Android

Python Shores up Security with Fresh Approach to 2FA Protection

In a move that’s set to introduce a fresh level of security for the world’s favorite programming language, the Python Package Index (PyPI), the official repository of third party open-source Python ...
Dark Reading

PyPI Mandates 2FA, Plans Google Titan Key Giveaway

As part of the push to mandate two-factor authentication for critical projects, the Python Package Index will distribute 4,000 Google Titan security keys to developers. PyPI, the largest package ...
Infosecurity-magazine.com

PyPI Repository Enforces 2FA for Critical Python Projects

Python Package Index (PyPI), the official third-party open-source repository for Python projects, said it will enforce a mandatory two-factor authentication (2FA) policy for projects categorized as ...
Computer Weekly

PyPI loophole puts thousands of packages at risk of compromise

Thousands of applications that have taken advantage of open source Python Package Index (PyPI) software packages may be at risk of hijacking and subversion by malicious actors, opening up the ...
CSOonline

Attackers use Python compiled bytecode to evade detection

Newly discovered campaign takes advantage of the fact that most vulnerability scanning tools don't read compiled open-source software. Attackers who are targeting open-source package repositories like ...