Cybersecurity researchers have discovered two new malicious packages in the Python Package Index (PyPI) repository that are designed to deliver a remote access trojan called SilentSync on Windows systems.
« SilentSync is capable of remote command execution, file exfiltration, and screen capturing, » Zscaler ThreatLabz’s Manisha Ramcharan Prajapati and Satyam Singh said. « SilentSync also extracts
