Experts found 3 malicious packages hiding crypto miners in PyPi repository

Researchers discovered three malicious packages in the Python Package Index (PyPI) repository. The packages, named modularseven, driftme, and catme, were designed to target Linux systems and deploy a crypto miner. Over 400 downloads of these packages were recorded before they were removed from the PyPI repository. The packages, created by an author identified as “sastra”, had indicators of compromise similar to a malicious “culturestreak” package detected earlier.