A case of mistaken identity. The problem is that packages in the standard Python library should originate only from their official source, rather than being downloaded from third-party ...

Python is one of the most approachable languages to learn, thanks to its object-oriented-first approach and its minimal ...

PyPI package 'ctx' and PHP library 'phpass' hijacked to obtain AWS keys. ... Python Package Index (PyPI) module 'ctx' is one of the packages in question, with over 20,000 downloads each week.

This package, too, mimicked the name of a popular Python library, named "colorama." According to the PyPI Stats service , 54 users had downloaded the package a month before it was taken down.

Python's ctx library and a fork of PHP's phpass have been compromised. 3 million users combined. The malicious code sends all the environment variables to a heroku app, likely to mine AWS credentials.

North Korean state-sponsored hackers have uploaded malicious packages to the PyPI (Python Package Index) repository, camouflaging one of them as a VMware vSphere connector module named vConnector.

Stealing SSH and GPG keys. According to Martini, the malicious code was present only in the jeIlyfish library. The python3-dateutil package didn't contain malicious code of its own, but it did ...