News

ZDNet1y
Developers, watch your code: Official Python repository spread malicious projects - ZDNET
PyPI is the official Python Package Index that currently contains 500,972 projects, 5,228,535 million releases, 9,950,103 million files, and 770,841 users. PyPI helps users locate and install ...
Ars Technica7y
Devs unknowingly use “malicious” modules snuck into official Python repository
The official repository for the widely used Python programming language has been tainted with modified code packages, a computer security authority in Slovakia warned. The authority also said the ...
WeLiveSecurity1y
A pernicious potpourri of Python packages in PyPI - WeLiveSecurity
PyPI is popular among Python programmers for sharing and downloading code. Since anyone can contribute to the repository, malware – sometimes posing as legitimate, popular code libraries – can ...
The Hacker News8d
200+ Trojanized GitHub Repositories Found in Campaign Targeting Gamers and Developers
A new cybersecurity campaign has exposed 67 trojanized GitHub repositories, targeting gamers and developers with malicious ...
Bleeping Computer7y
Backdoored Python Library Caught Stealing SSH Credentials - BleepingComputer
This time around, the backdoor was found in a Python module, and not an npm (JavaScript) package. Barely a week has passed from the last attempt to hide a backdoor in a code library, and we have a ...