A malicious Python Package Index (PyPI) package named "set-utils" has been stealing Ethereum private keys through intercepted wallet creation functions and exfiltrating them via the Polygon ...

Latest attack on PyPI users shows crooks are only getting better The code found in the malicious packages closely resembled legit offerings.