Threat actors are employing a new attack technique called ‘Revival Hijack’ to target the Python Package Index (PyPI). This technique involves registering new PyPI projects using the names of previously deleted packages. These malicious packages can then be incorporated into supply chain attacks, potentially compromising organizations that rely on them. Researchers have discovered that over 22,000 removed PyPI packages could be vulnerable to this tactic. The impact could be significant for organizations relying on vulnerable Python packages.