pypi · Malicious package advisory
Malwarecandytool
MAL-2023-2535
Malicious code in candytool (PyPI)
Details
--- _-= Per source details. Do not edit below this line.=-_ ## Source: checkmarx (b8289c1717a9f0c16dfd0c9174dbcac7eb8819b36dbc4846d37213b5f4a7d2d7) EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware