News

Ars Technica2y
10 malicious Python packages exposed in latest repository attack
Researchers have discovered yet another set of malicious packages in PyPi, the official and most popular repository for Python programs and code libraries.Those duped by the seemingly familiar ...
Ars Technica7y
Devs unknowingly use “malicious” modules snuck into official Python repository
The official repository for the widely used Python programming language has been tainted with modified code packages, a computer security authority in Slovakia warned. The authority also said the ...
ZDNet1y
Developers, watch your code: Official Python repository spread malicious projects - ZDNET
PyPI is the official Python Package Index that currently contains 500,972 projects, 5,228,535 million releases, 9,950,103 million files, and 770,841 users. PyPI helps users locate and install ...
Infosecurity-magazine.com2y
Two Additional Malicious Python Libraries Found on PyPI Repository
Two more malicious Python packages have been discovered in the Python Package Index (PyPI) repository, days after security researchers from Check Point spotted 10 of them.. The two additional packages ...
GIGAZINE2y
A 15-year overlooked vulnerability in Python could affect more than 300,000 open source repositories - GIGAZINE(ギガジン)
Sep 22, 2022 12:52:00 A 15-year overlooked vulnerability in Python could affect more than 300,000 open source repositories. A bug in the programming language Python has been rediscovered that was ...