Sonatype’s automated malware detection platform Nexus Firewall has flagged multiple dependency confusion packages on the PyPI registry today, all uploaded by the same user.
On January 23rd, PyPI user arturlebedev began flooding the PyPI registry with 1,275 packages, as observed by Sonatype:
Article Link: PyPI Flooded with 1,275 Dependency Confusion Packages