Found 3 malicious packages on #PyPI: httpxc, inject-rem, and boostbot - all by the same user.
They download and execute a 10MB .bat from discord on install. All reported to the authorities ofc.
#python #malware
Conversation
Notices
-
dubbel (dubbel@mstdn.io)'s status on Monday, 03-Apr-2023 21:07:24 CEST dubbel