Gmail servers hijacked by malicious PyPI packages to spread havoc – here’s how to stay safe

Researchers found multiple malicious PyPI packages, some several years old, but still a threat.