Malicious Python Packages Uploaded Data to Publicly Exposed Endpoints
Sonatype detected several malicious Python packages on the PyPI repository that have been stealing sensitive information, including AWS credentials, and uploading it to publicly exposed endpoints. Sonatype has reported the…