pypi · Malicious package advisory
Malwarecandyinfo
MAL-2023-2520
Malicious code in candyinfo (PyPI)
Details
--- _-= Per source details. Do not edit below this line.=-_ ## Source: checkmarx (11230ef7ac2dc1e301861321a6f1e66f61609d46d4f6e7472c88729f5a18b73f) EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware