PyPI Halts Sign-Ups Amid Surge of Malicious Package Uploads Targeting Developers,
The maintainers of the Python Package Index (PyPI) repository briefly suspended new user sign-ups following an influx of malicious projects uploaded as part of a typosquatting campaign.
PyPI said « new project creation and new user registration » was temporarily halted to mitigate what it said was a « malware upload campaign. » The incident was resolved 10 hours later, on March 28, 2024, at 12:56
PyPI said « new project creation and new user registration » was temporarily halted to mitigate what it said was a « malware upload campaign. » The incident was resolved 10 hours later, on March 28, 2024, at 12:56
,
The maintainers of the Python Package Index (PyPI) repository briefly suspended new user sign-ups following an influx of malicious projects uploaded as part of a typosquatting campaign.
PyPI said « new project creation and new user registration » was temporarily halted to mitigate what it said was a « malware upload campaign. » The incident was resolved 10 hours later, on March 28, 2024, at 12:56
PyPI said « new project creation and new user registration » was temporarily halted to mitigate what it said was a « malware upload campaign. » The incident was resolved 10 hours later, on March 28, 2024, at 12:56
, ,
https://thehackernews.com/2024/03/pypi-halts-sign-ups-amid-surge-of.html