The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
News9Live on MSN

After Jmail, New open source tool checks your LinkedIn contacts in Epstein court files

A new open source tool called EpsteIn (Epstein + LinkedIn) lets users check whether their LinkedIn connections appear in ...

Put down your headphones. Spotify wants you to pick up an actual book.

Following major expansions to Spotify’s podcast branch, the audio streamer is turning its attention to its audiobooks.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
Newswire by Storyful on MSN

Python needs vet after mistaking dog toy for tasty lunch

A python mistook dog toys for food in a Queensland home recently, swallowing one toy whole and chomping down on a second ...
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...