PyPi Python Packages are the New Source of Supply Chain Attacks
CloudGuard Spectral detects 10 malicious packages on PyPI, the leading Python package index used by developers for Python.
A dozen malicious Python packages were uploaded to the PyPi repository this weekend in a typosquatting attack that performs DDoS attacks on a Counter-Strike 1.6 server. Python Package Index (PyPi) is a repository of open-source software packages that developers can easily incorporate into their Python projects to build complex apps with minimal effort. On August 8, CheckPoint published a report on…