"Sonatype Exposes Malicious PyPI Package 'Pytoileur'"

Sonatype has disclosed the malicious PyPI package "Pytoileur," which is designed to download and install trojanized Windows binaries that are capable of surveillance, commandeering persistence, and stealing cryptocurrency. This package is part of the "Cool package" campaign, an initiative to infiltrate the coding community. The recently published PyPI package "Pytoileur" was detected by an automated malware detection system operated by Sonatype. It had been downloaded 264 times since its release before Sonatype notified PyPI administrators to remove it. This article continues to discuss findings regarding the malicious PyPI package.

Developer Tech reports "Sonatype Exposes Malicious PyPI Package 'Pytoileur'"

Submitted by grigby1
 

Submitted by Gregory Rigby on