Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

Your blueprint for better Python architecture. pattern_kit is a developer-friendly Python library offering clean, idiomatic implementations of common software design patterns. It focuses on real-world ...

Learn about the best ERP software available right now, including SAP S/4HANA, Oracle NetSuite ERP, and Microsoft Dynamics 365.

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...

Researchers at QED Secure show how a connected wheelchair could be remotely hijacked, highlighting growing cyber risks in medical devices.

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...

Quick user guide for python software to interact with the CMIP7 data request. Using the CMIP7 Data Request API you can load, filter, query, and export the Data Request programmatically in Python. This ...

According to the firm’s latest supply chain security report, there was a 73% increase in detections of malicious open-source packages in 2025. The past year also saw a huge jump in the scope of ...

ReversingLabs (RL), the trusted name in file and software security, today released its fourth annual Software Supply Chain Security Report. The 2026 ...

The Python Software Foundation (PSF) has an extra $1.5 million heading its way, after AI upstart Anthropic entered into a partnership aimed at improving security in the Python ecosystem. “This ...