The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
GitHub

wonderrful003/CRWB-EFT-System-v1.0

The CRWB EFT System is a Django-based web application designed for electronic payment processing with banking system compliance requirements. It streamlines payment batch creation, approval workflows, ...
The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
GitHub

stevereiner/python-alfresco-api

A Complete Python client package for developing python code and apps for Alfresco. Great for doing AI development with Python based LangChain, LlamaIndex, neo4j-graphrag, etc. Also great for creating ...
Hosted on MSN

Calgary lawyer admits forging emails to make client believe child access hearings had been scheduled

Disbarred Calgary lawyer Ronverg Mendoza pleaded guilty Thursday to uttering forged documents by creating phoney emails to a family law client falsely claiming custody hearings had been set. Reading ...
ag.purdue

Python Resources

There are way too many books about Python to list here many of them very good, but directed towards different learning styles and levels. This list includes books that I use, or that students in my ...