Security researchers have discovered a new malware variant called Kekw.

 

Security researchers have discovered a new malware variant called Kekw.  The variant targets Python developers. Kekw malware is designed to execute shell commands, including downloading and executing other payloads, and can be used for different attack scenarios. The malware is being distributed through third-party Python package repositories that are not officially maintained, and it is hidden inside seemingly legitimate packages. The packages with the Kekw malware are often designed to resemble well-known and widely-used packages, which can make it difficult for developers to spot the threat. Developers are advised to carefully vet the Python packages they use, only download packages from official repositories, and be vigilant for any unusual behavior on their systems. Additionally, users are encouraged to keep their systems up-to-date with the latest security patches and anti-virus software to mitigate the risk of Kekw malware and other threats.