"Devs Targeted by W4SP Stealer Malware in Malicious PyPI Packages"

Security researchers at Fortinet discovered five malicious packages on the Python Package Index (PyPI), stealing developers' passwords, Discord authentication cookies, and cryptocurrency wallets. PyPI is a software repository for Python-created packages. As the index has 200,000 packages, it allows developers to locate existing packages that meet specific project requirements, thereby saving them time and effort. The malicious packages containing the information-stealing malware 'W4SP Stealer' were uploaded to PyPI by a threat actor between January 27 and 29, 2023. Despite the removal of the packages, hundreds of software developers have already downloaded them. This article continues to discuss the discovery of malicious packages on PyPI containing the information-stealing malware W4SP Stealer.

Bleeping Computer reports "Devs Targeted by W4SP Stealer Malware in Malicious PyPI Packages"