Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...

Python infostealers are spreading from Windows to macOS via Google Ads, ClickFix lures, and fake installers to steal credentials and financial data.

A decade-old critical security vulnerability affects over 800,000 internet-exposed telnet servers, with reports of active ...

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

According to cybersecurity firm Hacken, financial losses from crypto hacks topped $440 million in the third quarter of 2024. Researchers at the Checkmarx cybersecurity firm sounded the alarm on a ...

A report from ReversingLabs reveals a massive 73% increase in malicious open-source packages in 2025, with over 10,000 ...

The Python-based information stealer SolyxImmortal uses legitimate APIs and libraries for stealthy data gathering and ...

New Python language libraries with end-to-end integrity help organizations build software safer and more efficiently KIRKLAND, Wash., May 14, 2025 /PRNewswire/ -- Chainguard, the secure foundation for ...

The Python Package Index (PyPI) has temporarily suspended user registration and the creation of new projects to deal with an ongoing malware campaign. PyPI is an index for Python projects that helps ...

Hackers are hunting for vulnerable endpoints to deploy Python malware.

North Korea is doubling down on a familiar playbook by weaponizing trust in open-source software and developer workflows. The ...