Hades Campaign: 19 PyPI Packages Compromised with Automatic Credential Stealer9. June 2026CybersecurityThe Hades campaign exploits manipulated PyPI packages with automatically executing setup files to steal Bun login credentials in the Python supply chain. Share on:
19 PyPI Packages Poisoned with Hades Malware – Auto-Execution via .pth Files9. June 2026Cybersecurity37 poisoned Wheel artifacts across 19 PyPI packages exploit .pth files to automatically execute a credential stealer upon Python import. Share on: