Bleeping Computer

451 PyPI packages install Chrome extensions to steal crypto

Over 450 malicious PyPI python packages were found installing malicious browser extensions to hijack cryptocurrency transactions made through browser-based crypto wallets and websites. This discovery ...
Bleeping Computer

Hackers target Python devs in phishing attacks using fake PyPI site

The Python Software Foundation warned users this week that threat actors are trying to steal their credentials in phishing attacks using a fake Python Package Index (PyPI) website. PyPI is a ...
GitHub

Update pypi hosted carla python clients

Currently, we can download the server tarball that contains the wheels for 0.10.0, but it is several GB in size. Given the 0.9.15.2 server hasn't been posted in binary form (see issue #8703), the ...