Supply Chain Attack on PyPI Steals Solana Private Keys

A supply chain attack on PyPI has resulted in the theft of Solana private keys by surreptitiously altering the code. This attack led to 25,900 downloads of the compromised version. The article does not provide specific technical details on how the code was modified to exfiltrate the private keys. The real impact of this attack is the theft of Solana private keys, which could result in significant financial losses for affected users.