Security experts found a malicious package, named onyxproxy, using leveraged Unicode support in Python to obfuscate an info-stealing malware. They said that the threat actor merely copy-pasted the code from various places and intermixed it with malicious code. The package onyxproxy was published on the platform on March 15 and it amassed 183 downloads before its removal on March 22.