The Python Package Index (PyPI) users are the subject of a phishing effort that threatens to remove their code packages if they don’t submit it to a phoney validation process, according to PyPI administrators.
PyPI administrators have warned users of emails that claim they are adopting a “required ‘validation’ process” in a series of tweets explaining how the scam operates. The repository allows Python developers to publish and find code packages to use for building software. [Read More…](Phishing Campaign Targets PyPI Users to Distribute Malicious Code (darkreading.com))