Redirecting you to Reddit in 5 seconds:

https://old.reddit.com/r/netsec/comments/17rbson/diving_into_pypi_package_name_squatting