Researchers have identified a new group of malicious Python packages that appear to be a continuation of the VMConnect supply chain attack, which was carried out by North Korean state-sponsored hackers.