When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
That file is actually shellcode for a Cobalt Strike beacon.
The researchers believe these two packages are part of a bigger malicious campaign.
Supply chain attacks through PyPI are nothing new.
Most of the attackers deploy the typosquatting technique, trying to trick people into downloading a malicious package.
