The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
GitHub

xyh-evelyn/knowledge-project

本仓库演示城市规划领域知识图谱从原始文本到 Neo4j 可视化的完整工程,涵盖 PDF/文本预处理、LLM 驱动的命名实体识别(NER ...