The Python Package Index repository’s maintainers were forced to suspend new project creation and new user registration on Thursday in order to combat a worrying malware upload campaign.
The confirmation of the PyPI incident, which has since been resolved, comes as security researchers at Checkmarx warn that multiple malicious Python packages are being distributed using typo-squatting techniques. “This is a multi-stage attack with a malicious payload designed to steal cryptocurrency wallets, sensitive data from browsers (cookies, extension data, etc.) and various credentials.
Furthermore, the malicious payload used a persistence mechanism to survive reboots,” Checkmarx wrote in a research note.
Read More: Malware Upload Attack Hits PyPI Repository
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
