News

ZDNet1y
Developers, watch your code: Official Python repository spread malicious projects
Also: How to use ChatGPT to write code Recently, cybersecurity specialist ESET discovered a series of malicious Python projects within ... to abuse the open-source W4SP Stealer, the operators ...
CSO Online2d
GitHub hit by a sophisticated malware campaign as ‘Banana Squad’ mimics popular repos
Attackers use typo-squatting, obfuscation, and fake accounts to slip Python-based malware into open-source projects, raising ...
Bleeping Computer2y
Unpatched 15-year old Python bug allows code execution in 350k projects
A vulnerability in the Python ... of software projects, both open and closed source. The researchers scraped a set of 257 repositories more likely to include the vulnerable code and manually ...
Bleeping Computer2y
PyPI mandates 2FA for critical projects, developer pushes back
On Friday, the Python Package Index (PyPI), the official repository of third-party open-source Python projects ... of a popular Python project decided to delete his code from PyPI and republish ...