Researchers Uncover 67 Trojanized GitHub Repositories in New Campaign

Cybersecurity researchers have discovered a new campaign where malicious actors have published more than 67 GitHub repositories claiming to offer Python-based hacking tools, but actually delivering trojanized payloads. This activity, named Banana Squad by ReversingLabs, is considered a continuation of a malicious Python campaign identified in 2023 targeting the Python Package.