Описание
spam project on PyPI compromised, malicious releases made
The spam project on PyPI was taken over via user account compromise via a phishing attack and a new malicious release made which contained code which some environment variables and downloaded and ran malware at install time
Пакеты
Наименование
spam
pip
Затронутые версииВерсия исправления
= 2.0.2
Отсутствует
Наименование
spam
pip
Затронутые версииВерсия исправления
= 4.0.2
Отсутствует