The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
GitHub

Fully automated batch processing of Revit files with your own Python or Dynamo task scripts!

See the Releases page for v1.10.0-beta release notes. This tool enables you to do things with Revit files on a very large scale. Because of this ability, Python or Dynamo scripts that make ...
Putnam Daily Voice

NY AG Files Suit After Trump Admin Threatens To Pull Billions Over Transgender Protections

New York Attorney General Letitia James is leading a multistate lawsuit against the US Department of Health and Human Services, accusing the federal government of unlawfully threatening to withhold ...
Fierce Healthcare

HHS appears ready to pull appeal of 340B rebate pilot pause

The Department of Health and Human Services appears willing to take its contentious 340B Rebate Model Pilot Model back to the drawing board. After a lawsuit filed by hospitals secured a last-minute ...
GitHub

Python script to decrypt aoe2campaign.gpv files, and two methods of extracting the AES keys to do so.

Currently as of AoE2DE update: Update 158041, only Memory Dump script 2 is working (titled Dump gpv keys, iv [Method 2] and dump decrypted campaigns ) Update 130746, only Memory Dump script 1 is ...