ZDNet

Twelve malicious Python libraries found and removed from PyPI

A software security engineer has identified 12 Python libraries uploaded on the official Python Package Index (PyPI) that contained malicious code. The 12 packages have been discovered in two separate ...

New string of phishing attacks targets Python developers

If you recently got an email asking you to verify your credentials to a PyPI site, better change that password ...
TechRadar

Malicious Python packages are stealing vital data, and have been downloaded thousands of ...

Researchers found three malicious PyPI packages, two targeting bitcoin developers, and one WooCommerce stores Two are designed to steal data, and the third to test for valid credit cards All three ...
TechRadar

Malicious Python packages dump your AWS secrets online

Multiple malicious Python packages leaking sensitive user information have been uncovered by security experts. In a blog post, Sonatype security researcher Ax Sharma says the packages: loglib-modules, ...
pv magazine International

PVRadar launches Python programming tool to ease site-specific loss modeling

German software company PVRadar Labs has released a Python programming toolbox for industry practitioners that are building site-specific models. The package provides a shortcut to to customize yield ...
Bleeping Computer

10 malicious PyPI packages found stealing developer's credentials

Threat analysts have discovered ten malicious Python packages on the PyPI repository, used to infect developer's systems with password-stealing malware. The fake packages used typosquatting to ...
InfoWorld

Virtualenv and venv: Python virtual environments explained

Of all the reasons Python is a hit with developers, one of the biggest is its broad and ever-expanding selection of third-party packages. Convenient toolkits for everything from ingesting and ...