Bleeping Computer

Hackers target Python devs in phishing attacks using fake PyPI site

The Python Software Foundation warned users this week that threat actors are trying to steal their credentials in phishing attacks using a fake Python Package Index (PyPI) website. PyPI is a ...

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...
Hosted on MSN

Instagram and TikTok accounts are being stolen using malicious PyPI packages

Security researchers found three malicious PyPI packages The packages had around 7,000 downloads They were designed to check for active email accounts Security researchers have found some of the tools ...