Widespread PyPI package takeovers likely with new supply chain attack technique

Attacks enable PyPI software takeovers by re-registering packages upon their removal from the index, an analysis from JFrog showed.

Article Link: Widespread PyPI package takeovers likely with new supply chain attack technique | SC Media