Targeted PyPi Package Steals Google Cloud Credentials from macOS Devs

The campaign is laser-targeted, bucking the trend of “spray-and-pray” malicious open source packages turning up in code repositories seemingly every other day.

darkreading – ​Read More