/r/netsec
Telnyx package on PyPI compromised by TeamPCP. WAV steganography used for payload delivery https://thecybersecguru.com/news/pypi-telnyx-package-compromised-teampcp-supply-chain-attack/
PyPI telnyx Package Compromised: TeamPCP Supply Chain Attack | The CyberSec Guru

PyPI package 'telnyx' versions 4.87.1 and 4.87.2 contain malware from threat actor TeamPCP. Malware runs on import, uses WAV steganography for payloads

The CyberSec Guru
Mar 28 at 4:28amWeb