The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.

How recruitment fraud turned cloud IAM into a $2 billion attack surface

Adversaries weaponized recruitment fraud to steal cloud credentials, pivot through IAM misconfigurations, and reach AI ...
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
GitHub

CoRE-MOF Python package

Easy access to the various versions of the CoRE MOF databases, as a Python package. The 2019 database included in the package is the “public” part of the database, which is freely available. It is ...
GitHub

Vizro is a low-code toolkit for building high-quality data visualization apps

Vizro is an open-source Python-based toolkit. Use it to build beautiful and powerful data visualization apps quickly and easily, without needing advanced engineering or visual design expertise. Then ...