PYPI 4

• OceanLotus Distributing ZiChatBot Malware via PyPI Packages May 7, 2026
• PyPI urges users to reset credentials after new phishing attacks Sep 23, 2025
• Surveillance Malware Hidden in npm and PyPI Packages Targets Developers with Keyloggers, Webcam Capture, and Credential Theft Jul 23, 2025
• Monkey-Patched PyPI Packages Use Transitive Dependencies to Steal Solana Private Keys May 29, 2025