Tag: PyPI

In the ever-evolving landscape of open-source software, security threats continue to grow in sophistication, targeting both developers...

In a recent alarming incident, cybersecurity researchers uncovered a malicious Python package named "lr-utils-lib" that was uploaded to the...

In recent months, the open-source community has been alarmed by the discovery of malicious Python packages uploaded to the Python Package...

Two malicious Python packages, Zebo-0.1.0 and Cometlogger-0.1, have been discovered on PyPI, posing severe threats to user privacy...

The Ultralytics AI library, a popular Python package widely used for artificial intelligence applications, was recently compromised in a...

A malicious package named "fabrice" has been found on the Python Package Index (PyPI), exploiting a popular typosquatting tactic to...

A series of malicious packages was uncovered in the Python Package Index (PyPI) repository, posing as cryptocurrency wallet recovery and management tools.

Google has addressed a critical security flaw in its Cloud Platform (GCP) Composer that could have been exploited to achieve remote code...

The Lazarus Group, a notorious North Korean cybercriminal organization, has recently escalated its tactics by using fake coding tests to...

Iraq-based cybercriminals have been deploying malicious Python packages through the popular PyPI repository, according to a report...