PyPI Supply Chain Attack Uncovered: Colorama and Colorizr Name Confusion

Checkmarx researcher Ariel Harush uncovered a cross-platform supply-chain campaign using typo-squatted PyPI packages mimicking colorama/colorizr to deliver Windows and Linux payloads that establish persistence, evade detection, provide remote access (C2), and exfiltrate sensitive data; packages have been removed but IoCs (package owners, GitHub repo, webhook, file hashes) and recommended mitigations are provided.