Malicious Python Package 'automslc' Pirated Music from Deezer for Years

A malicious package named 'automslc' has been downloaded more than 100,000 times from the Python Package Index (PyPi) since 2019. This package uses hardcoded credentials to hack music from the streaming service Deezer. The credentials allowed the package to bypass Deezer's protections and illegally download music tracks. The impact of this malicious activity is significant, as it enabled large-scale music piracy over several years.