The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
TechRadar

Hackers hijack Python packages once again to spread dangerous malware

PyPI is short for Python Package Index, and serves as a repository for Python software packages. It is a central hub where Python developers can upload, share, and install software libraries and tools ...