PyPI Halts Sign-Ups Amid Surge of Malicious Package Uploads Targeting Developers

The maintainers of the Python Package Index (PyPI) repository briefly suspended new user sign-ups following an influx of malicious projects uploaded as part of a typosquatting campaign.
It said « new project creation and new user registration » was temporarily halted to mitigate what it said was a « malware upload campaign. » The incident was resolved 10 hours later, on March 28, 2024, at