Twelve malicious Python libraries found and removed from PyPI One package contained a clipboard hijacker that replaced victims' Bitcoin addresses in an attempt to hijack funds from users.

The Python security team removed two trojanized Python libraries from PyPI (Python Package Index) that were caught stealing SSH and GPG keys from the projects of infected developers.