Malicious packages imitating popular LLMs found in PyPI repository.Packages installed JarkaStealer malware on victims' machines.Packages downloaded over 1700 times from 30 countries.PyPI administrators removed the malicious packages, but caution is advised.