• About Us
  • Advertising
  • Digital Magazine
  • Supplements
  • Media Pack
  • Privacy Policy
  • Contact us
CXO Insight Middle East
  • News
  • Opinion
  • Business
    • Industries
      • Transport
      • Retail
      • Government
      • Real Estate
      • Education
      • Energy
      • Banking and Finance
    • Channel
  • Future
    • Tech
    • Gadgets
    • Science
    • Space
    • Sustainability
  • Events
    • Channel Insights Summit 2025
    • Insight Innovation Summit
    • CXO50 Oman
    • CXO50
    • ICT Awards
      • Dubai 2025
      • Saudi Arabia
    • Cyber Strategists Summit
    • Cloud Connect 2025
    • Channel Awards 2024
    • All events
  • Digital Magazine
  • GITEX GLOBAL
No Result
View All Result
CXO Insight Middle East
  • News
  • Opinion
  • Business
    • Industries
      • Transport
      • Retail
      • Government
      • Real Estate
      • Education
      • Energy
      • Banking and Finance
    • Channel
  • Future
    • Tech
    • Gadgets
    • Science
    • Space
    • Sustainability
  • Events
    • Channel Insights Summit 2025
    • Insight Innovation Summit
    • CXO50 Oman
    • CXO50
    • ICT Awards
      • Dubai 2025
      • Saudi Arabia
    • Cyber Strategists Summit
    • Cloud Connect 2025
    • Channel Awards 2024
    • All events
  • Digital Magazine
  • GITEX GLOBAL
No Result
View All Result
CXO Insight Middle East
No Result
View All Result

DeepSeek popularity exploited in latest PyPI attack

by CXO Staff
February 4, 2025
in Future, News, Tech

The Supply Chain Security team at Positive Technologies' Expert Security Centre (PT ESC) discovered and neutralised a malicious campaign in the Python Package Index (PyPI) repository

Confluent Enables Enterprises to Build a Secure Shared Services Platform for Data Streaming

The Supply Chain Security team at Positive Technologies’ Expert Security Centre (PT ESC) discovered and neutralised a malicious campaign in the Python Package Index (PyPI) repository[1]. This attack was aimed at developers, ML engineers, and anyone seeking to integrate DeepSeek into their projects.

The attacker’s account, created in June 2023, remained dormant until January 29, when the malicious packages deepseeek and deepseekai were registered. Once installed, these packages would register console commands. When these commands were executed, the packages began stealing sensitive user data, including information about their computers, and environment variables often containing database credentials and access keys to various infrastructure resources. The attackers used Pipedream, a popular developer integration platform, as their command-and-control server to receive the stolen information.

Stanislav Rakovsky, Head of Supply Chain Security at PT ESC, explained: “Cybercriminals are always looking for the next big thing to exploit, and DeepSeek’s popularity made it a prime target. What’s particularly interesting is that the malicious code appears to have been generated with the help of an AI assistant, based on comments within the code itself. The malicious packages were uploaded to the popular repository on the evening of January 29. Thanks to the vigilance of PT PyAnalysis, Positive Technologies’ automated malicious package detection service, the threat was identified and neutralised within minutes. Despite the rapid response, the packages had been downloaded over 200 times.”

Given the heightened interest in DeepSeek, this attack could have resulted in numerous victims if the malicious activity had gone unnoticed for longer. Experts at Positive Technologies strongly recommend being more attentive to new and unknown packages and using PT PyAnalysis. PT PyAnalysis provides real-time monitoring of newly released packages published by PyPI users, offering an essential layer of defense against malicious actors.


[1] The Python Package Index (PyPI) is the default repository for Python packages, used by popular package managers like pip, pipenv, and poetry.

Tags: DeepSeekPositive TechnologiesPyPI attack
ShareTweet

Related Posts

Beyond vision: Ericsson’s Petra Schirren on an execution-first strategy for the Gulf’s digital future
Future

Beyond vision: Ericsson’s Petra Schirren on an execution-first strategy for the Gulf’s digital future

Across the Gulf, the race to become a global leader in digital infrastructure is accelerating. With bold national visions, strategic...

July 25, 2025
SentinelOne solutions join new AWS Marketplace AI Agents and Tools category
Future

SentinelOne solutions join new AWS Marketplace AI Agents and Tools category

SentinelOne announced the availability of Singularity Cloud Security and Singularity AI SIEM. This includes Purple AI, the industry’s most advanced...

July 25, 2025

Discussion about this post

Latest Issue

Beyond vision: Ericsson’s Petra Schirren on an execution-first strategy for the Gulf’s digital future

Beyond vision: Ericsson’s Petra Schirren on an execution-first strategy for the Gulf’s digital future

July 25, 2025
SentinelOne solutions join new AWS Marketplace AI Agents and Tools category

SentinelOne solutions join new AWS Marketplace AI Agents and Tools category

July 25, 2025
UAE’s EDGE, Pavo Group launch new JV in defence technology

UAE’s EDGE, Pavo Group launch new JV in defence technology

July 24, 2025

The most trusted source of strategic intelligence for IT decision makers in the Middle East.

About

  • About Us
  • Advertising
  • Digital Magazine
  • Supplements
  • Media Pack
  • Contact Us

Policies

  • Privacy Policy
© 2025 – CXO Insight Middle East. All Rights Reserved.
Facebook-f X-twitter Linkedin
Separated they live in Bookmarksgrove right at the coast of the Semantics, a large language ocean. A small river named Duden.

About

  • About Us
  • Site Map
  • Contact Us
  • Career

Policies

  • Help Center
  • Privacy Policy
  • Cookie Setting
  • Term Of Use

Join Our Newsletter

© 2024 – CXO Insight Middle East. All Rights Reserved.

Facebook-f Twitter Youtube Instagram

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
Join our mailing list
Sign up here to get the latest news, updates and special offers delivered directly to your inbox.
No Result
View All Result
  • News
  • Opinions
  • Business
    • Industries
      • Transport
      • Retail
      • Government
      • Real Estate
      • Education
      • Energy
      • Banking and Finance
  • Channel
  • Future
    • Tech
    • Gadgets
    • Science
    • Space
    • Sustainability
  • Events
    • Channel Insights Summit 2025
    • Insight Innovation Summit
    • CX50 Oman
    • CXO50
    • ICT Awards
      • Dubai
      • Saudi Arabia
    • Cyber Strategists Summit
    • Cloud Connect 2025
    • Channel Awards 2023
    • All events
  • Videos
  • GITEX GLOBAL
  • Digital Magazine

© 2025 - CXO Insight Middle East. All Rights Reserved.