pypi · Malicious package advisory
Malwarecandyhttp
MAL-2023-2519
Malicious code in candyhttp (PyPI)
Details
--- _-= Per source details. Do not edit below this line.=-_ ## Source: checkmarx (de22f8aee2035ff64f971da170d2353f4f36de29bcd9d0d24c80bb8df1a543cf) EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware