PyPI stops signing up new users to try and block malware campaign



Python Package Index (PyPI), the largest repository of Python packages, has once again been forced to suspend new account and new project registrations.

Cybersecurity experts from both Checkmarx and Check Point observed a large-scale cyberattack in which threat actors tried to upload hundreds of malicious packages to the platform, in an attempt to compromise software developers and mount supply chain attacks.



Source Article Link

Leave a Comment