Security News Malicious PyPI package with 37,000 downloads steals AWS keys BleepingComputer Daniel Bender Nov 9, 2024 A malicious Python package named 'fabrice' has been present in the Python Package Index (PyPI) since 2021, stealing Amazon Web Services credentials from unsuspecting developers.