A new malicious package discovered in the Python Package Index
(PyPI) has been found to impersonate a popular library for symbolic
mathematics to deploy malicious payloads, including a
cryptocurrency miner, on Linux hosts. The package, named sympy-dev,
mimics SymPy, replicating the latter's project description verbatim
in an attempt to deceive unsuspecting users into thinking that they
are
Read more https://thehackernews.com/2026/01/malicious-pypi-package-impersonates.html
