DDoS attacks via new Python packages

malicious python packages
Photo by Zhukov Oleg

This weekend, researchers at discovered that a user named “devfather777” published 12 python packages on that used a name similar to other popular packages to trick software developers into using the malicious versions instead [1].

The complete list of uploaded malicious packages are:


A dozen malicious Python packages were uploaded to the PyPi repository this weekend in a typosquatting attack that performs DDoS attacks on a Counter-Strike 1.6 server [2].

Because software developers usually fetch these packages via the terminal, it’s easy to type their name with a letter in the wrong order. Since the download and build continue as expected, the victim doesn’t realize the mistake and infects their device [1].

(Distributed Denial of Service) involves sending large amounts of traffic from multiple sources to a service or website, intending to overwhelm it. A huge influx of traffic all at once can tie up all the site’s resources and thereby deny access to legitimate users.

If you use any of the 12 packages mentioned above and think you made a typo this weekend, go over your projects and double-check that you are using the right software. Unfortunately, no package comes with security guarantees. Users are responsible for double-checking names, or any other details such as release histories, submission details, homepage links, and download numbers [3].

Hopefully, I (Melanee) have checked the repository and that detrimental packages have been removed from there, please share this story with your friends to make them aware to uninstall these packages.

Writer: Melanee

Contact Melanee on GitHub:


[1] https://www.bleepingcomputer.com/news/security/malicious-pypi-packages-aim-ddos-attacks-at-counter-strike-servers/

[2] https://www.reddit.com/r/programming/comments/wpk3uj/a_dozen_malicious_python_packages_were_uploaded/

[3] https://devm.io/python/malicious-pypi-packages



New Computer Science articles

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store