Dark Reading

10 Malicious Code Packages Slither into PyPI Registry

Administrators of the Python Package Index (PyPI) have removed 10 malicious software code packages from the registry after a security vendor informed them about the issue. The incident is the latest ...
TechRadar

Python devs targeted with dangerous phishing attacks - here's how to stay safe

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. Developers who published projects on PyPI with their email in package metadata are being targeted ...
Bleeping Computer

PyPI urges users to reset credentials after new phishing attacks

The Python Software Foundation has warned victims of a new wave of phishing attacks using a fake Python Package Index (PyPI) website to reset credentials. Accessible at pypi.org, PyPI is the default ...