Technology ❯ Cybersecurity ❯ Software Security ❯ Supply Chain Attacks
By using stolen maintainer credentials, the attackers turned trusted publishing into a delivery channel for code that runs at Python startup.