Malicious Go and PyPI packages use Gmail and wget to exfiltrate data, wipe Linux disks, and hijack crypto credentials.

Preparing to travel, I opened my luggage and swivelled for pyjamas. Turning back, the suitcase was packed — with Pirate, our ...