Actors behind PyPI supply chain attack have been active since late 2021
The official software repository for the Python language, Python Package Index (PyPI), has been targeted in a complex supply chain attack that appears to have successfully poisoned at least two legitimate projects with credential-stealing malware, researchers said on Thursday. PyPI officials said last week that project contributors were under a phishing attack that attempted to …
Actors behind PyPI supply chain attack have been active since late 2021 Read More »