Compromised open source package pushed malicious Elementary CLI release to developers | IT Pro

A recent release of the Elementary Python CLI tool (version 0.23.3) was compromised with malicious code, potentially exposing sensitive developer data like SSH keys, cloud credentials, and crypto wallet files. Developers who downloaded this version are urged to uninstall it, clear their cache, and rotate all accessible credentials.