News

Python devs targeted with dangerous phishing attacks - here's how to stay safe
Developers who published projects on PyPI with their email in package metadata are being targeted They are asked to "verify" ...
InfoWorld1y
How to use uv: A superfast Python package installer - InfoWorld
All-in-one Python project management tool written in Rust aims to replace pip, venv, and more. Here's a first look. A few behaviors aren’t supported yet, but these should not interfere with your ...
TechRadar7mon
More malicious Python packages are on the loose, experts warn
Both packages are described as sophisticated, persistent, and dangerous. Python is one of the world’s most popular programming languages, and by nature, PyPI is one of the world’s most popular ...
Developer Tech13d
Python 3.14 slithers closer with RC1 arrival
The Python development team has announced the arrival of 3.14's first release candidate before its official launch in October ...
Ars Technica1y
Highly invasive backdoor snuck into open source packages targets ...
Execute any command on the compromised host In all, pyobfgood and the previous seven tools were installed 2,348 times. They targeted developers using the Python programming language.
Dark Reading1y
'BlazeStealer' Python Malware Allows Complete Takeover of Developer ...
For its part, Checkmark has tracked various malicious Python-based packages, including its September 2023 discovery of culturestreak, which runs a concurrent loop to tie up system resources for ...
CoinTelegraph9mon
Crypto-stealing malware discovered in Python Package Index — Checkmarx
Despite the vigilance and quick action of Checkmarx and the Python Package Index to address the issue, the malware returned in early October and has reportedly been downloaded more than 3,700 ...
Anaconda raises $150M+ to speed up Python-based AI projects
According to the company, Insight Partners led the investment with participation from Mubadala Capital. Bloomberg reported ...