Python programming libraries found hiding security threats

Threat actors have been using typosquatting to attack Python developers (opens in new tab) with malware, researchers have claimed. Experts from Spectralops.

io recently analyzed PyPI, a software repository for Python programmers, and found ten malicious packages on the platform. All of these were given names that are almost identical to the names of legitimate packages in order to dupe developers into downloading, and adopting, the tainted ones.

Read more