Over twenty Python packages that are propagating malware that steals information have been found by researchers on the PyPI registry. While some of these use malware allegedly made purely for “educational reasons,” the majority of them use obfuscated code that instals “W4SP” info-stealers on victim computers.
The packages listed below are typosquats, which means that threat actors publishing them purposefully gave them names that are similar to well-known Python libraries in the hopes that developers trying to fetch the actual library would accidentally retrieve one of the malicious ones due to a misspelt name. Read More…