Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

Think about the last ten visitors to your online store. You probably picture ten people browsing on their phones or laptops.