Tag
pypi-typosquatting
Safeguard articles tagged "pypi-typosquatting" — guides, analysis, and best practices for software supply chain and application security.
4 articles
Software Supply Chain Security
PyPI typosquatting malicious packages
PyPI typosquatting tricks developers into installing malicious lookalike packages via one-letter typos. Real incidents, attack patterns, and defenses inside.
Jul 2, 20265 min read
Open Source Security
PyPI typosquatting and malicious Python packages targetin...
PyPI typosquatting lets attackers slip malicious Python packages into your build with one typo. Real attacks, why PyPI is exposed, and how to stay safe.
Jan 28, 20267 min read
Incident Analysis
ctx and colourama PyPI typosquat malware incident
The ctx and colourama PyPI typosquatting malware incident shows how account takeover and name-squatting delivered credential-stealing code to devs.
Dec 29, 20257 min read
Open Source Security
PyPI typosquatting and malicious package report
A 2026 look at PyPI typosquatting trends: attack patterns, CI/CD targeting, info-stealer payloads, and how to defend the Python supply chain.
Nov 28, 20257 min read