Active malware campaign was found targeting PyPI and npm repositories
Updated on 2022-12-22: New PyPI malware Phylum researchers have documented two waves of malicious packages published on the PyPI portal, one deploying the W4SP Stealer and the second deploying the Satan Stealer malware strains. ReversingLabs and Fortinet also have reports on other unrelated attack too. The Python Foundation really needs to get on top of …
