Browsing Tag
Python
23 posts
New PyPI Malware Poses as Crypto Wallet Tools to Steal Private Keys
Checkmarx researchers discovered PyPI malware posing as crypto wallet tools. These malicious packages stole private keys and recovery…
October 1, 2024
New Supply Chain Attack “Revival Hijack” Risks Massive PyPI Takeovers
JFrog's cybersecurity researchers have identified a new PyPI attack technique called "Revival Hijack," which exploits package deletion policies. Over 22,000 packages are at risk, potentially impacting thousands of users. Stay informed!
September 5, 2024
PythonAnywhere Cloud Platform Abused for Hosting Ransomware
Razr ransomware is exploiting PythonAnywhere to distribute and encrypt files with AES-256. ANY.RUN’s analysis reveals its behaviour, C2…
August 27, 2024
NTLM Credential Theft Risk in Python Apps Threaten Windows Security
New research reveals critical vulnerabilities in Python applications for Windows including Snowflake, Gradio, Jupyter, and Streamlit that could…
August 26, 2024
Iraqi Hackers Exploit PyPI to Infiltrate Systems Through Python Packages
Python packages are being used to steal data from developers and companies. Learn about the extensive cybercriminal operation…
July 16, 2024
Malicious Node on ComfyUI Steals Data from Crypto, Browser Users
Cryptocurrency users beware: A malicious ComfyUI node steals sensitive data like passwords, crypto wallet addresses, etc. Stay safe…
June 10, 2024
AI Python Package Flaw ‘Llama Drama’ Threatens Software Supply Chain
The Llama Drama vulnerability in the Llama-cpp-Python package exposes AI models to remote code execution (RCE) attacks, enabling attackers to steal data. Currently, over 6,000 models are affected by this vulnerability.
May 20, 2024
A Checklist for What Every Online Coding Class for Kids Needs
Is your coding class engaging and effective? Learn what makes the best online coding classes for kids fun, effective, and future-proof!
May 4, 2024
Vulnerabilities Exposed Hugging Face to AI Supply Chain Attacks
Wiz.io, known for its cloud security expertise, and Hugging Face, a leader in open-source AI tools, are combining their knowledge to develop solutions that address these security concerns. This collaboration signifies a growing focus on securing the foundation of AI advancements.
April 5, 2024
PyPI Suspends New Projects and Users Due to Malicious Packages
Are you a Python developer? Here's what you need to know!
March 28, 2024