Revival hijack attack affects PyPI

Revival hijack attack affects PyPI

Researchers from JFrog have discovered a new supply chain attack technique for attacking PyPI repositories, potentially impacting over 22,000 software packages and threatening countless users. The technique, dubbed Revival Hijack,…
Rouge Package in PyPI Repository

Rouge Package in PyPI Repository

Researchers have discovered three malicious PyPI packages on the PyPI repository that were uploaded by the same actor, Lolip0p. The packages were discovered on January 10, 2023, and the packages…