Security News PyPI Python Library "aiocpa" Found Exfiltrating Crypto Keys via Telegram Bot TheHackerNews Daniel Bender Nov 25, 2024 Malicious PyPI package "aiocpa" exfiltrates crypto keys via Telegram, emphasizing supply chain security gaps.