Summary: A North Korean hacker group has deployed malicious versions of Python packages in the PyPI repository. The packages mimic open-source Python tools and use tactics like typosquatting to trick developers into installing malware. The malware gathers machine data and communicates with a command and control server. The campaign has been linked to the Lazarus Group, confirming North Korean state sponsorship.
Hashtags: #CyberAttack #NorthKorea #PyPIRepository