Cybersecurity researchers from Check Point Research (CPR) have discovered a new malicious package on PyPI, the code repository for the Python programming language which uses an image to deliver a Trojan malware, largely using GitHub. The threat actors behind this new campaign hope that while searching the web for legitimate projects, Python developers will, sooner or later, come across ‘apicolor’. The seemingly benign in-development package on PyPI, once installed, first manually installs extra requirements, and then downloads a picture from the web.
…
Read more