PyPI malware termncolor and colorinal downloaded 884 times exploit DLL side-loading, persistence, and C2 communication.

Threat analysts have discovered ten malicious Python packages on the PyPI repository, used to infect developer's systems with password-stealing malware.

Several harmful Python .whl files containing a new type of malware called “Kekw” have been discovered on PyPI (Python Package Index). According to new data by Cyble Research and Intelligence Labs ...

Hackers are once again targeting Python developers involved in the blockchain industry in an attempt to distribute malware and steal tokens. A new report from cybersecurity researchers at ...

The PyPI package flood is just the latest in a string of attacks on public repositories with the intent to plant malicious code.

A software security engineer has identified 12 Python libraries uploaded on the official Python Package Index (PyPI) that contained malicious code.

Python Development Master taps new features in Python to manage a project’s packages without the overhead imposed by a virtual environment.

A new report out today from Sonatype Inc. has revealed that open-source software adoption is at a multitrillion-request scale, with ecosystems such as JavaScript and Python leading the charge. The ...