Teknyx Python was the victim of a supply chain attack.

The Telnyx Python SDK became the latest victim of TeamPCP’s expanding supply chain campaign, with two malicious versions uploaded to PyPI. These packages embedded a WAV file containing a hidden payload that deployed malware across Windows, macOS, and Linux systems. The attackers used RSA-encrypted exfiltration to steal session keys, mirroring techniques seen in earlier TeamPCP compromises.

Read more:

https://www.securityweek.com/telnyx-targeted-in-growing-teampcp-supply-chain-attack/