The Hacker News37m
Malicious PyPI Packages Stole Cloud Tokens—Over 14,100 Downloads Before Removal
Researchers uncovered 20 malicious PyPI packages stealing cloud credentials, downloaded 14,100+ times before removal.