PyPI repository restored after temporarily suspending new activity

Automated attack suspected as culprit

clock • 2 min read
PyPI repository restored after temporarily suspending new sign-ups and package uploads
Image:

PyPI repository restored after temporarily suspending new sign-ups and package uploads

After temporarily suspending new user sign-ups and package uploads, the maintainers of the Python Package Index (PyPI), the official repository for open source Python packages, have now restored the registry.

In a notice released on 20th May, the PyPI admins said the number of malicious users and projects created on the index "in the past week" had exceeded their capacity to quickly address. That was...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Experimental Morris II worm can exploit popular AI services to steal data and spread malware

Threats and Risks

Experimental Morris II worm can exploit popular AI services to steal data and spread malware

Cornell researchers created worm 'to serve as a whistleblower'

clock 01 May 2024 • 3 min read
UK business falling short on cybersecurity warns government report

Threats and Risks

UK business falling short on cybersecurity warns government report

A staggering 78% of businesses lack a formal incident response plan

clock 10 April 2024 • 3 min read
Multiple China-linked groups attacking Ivanti vulnerabilities

Threats and Risks

Multiple China-linked groups attacking Ivanti vulnerabilities

Patches have been made available by Ivanti

clock 08 April 2024 • 2 min read
Author spotlight

Dev Kundaliya

View profile
More from Dev Kundaliya

NCSC CTO: UK tech sector not incentivising companies to build secure software

Underwater datacentres vulnerable to sonic attacks

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

Get the newsletter

More on Threats and Risks

Russian criminals use Lunar malware to breach European government agency
Threats and Risks

Russian criminals use Lunar malware to breach European government agency

Attackers thought to be part of Russia's FSB

Tom Allen
Tom Allen
clock 17 May 2024 • 2 min read
Microsoft May Patch Tuesday fixes two actively exploited zero days
Threats and Risks

Microsoft May Patch Tuesday fixes two actively exploited zero days

Microsoft has fixed 60 Windows CVEs in its May Patch Tuesday update, two of which are actively exploited zero days. One is a critical vulnerability, earning an 8.8 CVSS rating.

John Leonard
John Leonard
clock 15 May 2024 • 3 min read
NCSC and insurers unite to fight ransomware threat
Threats and Risks

NCSC and insurers unite to fight ransomware threat

First rule: 'Don't panic'

Dev Kundaliya
clock 15 May 2024 • 3 min read