Experts warn that more malicious Python packages are circulating


  • Security researchers found two packages on PyPI, which showed malicious intent
  • The packages give the attackers access to systems and sensitive data
  • The researchers warn developers to be careful when using third-party packages

Experts have warned that PyPI continues to be abused after researchers discovered more malicious packages were hiding on the platform.

A report from Fortinet’s FortiGuard Labs discovered two packages designed to steal people’s credentials, grant unauthorized access to devices, and more.