Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX ...
GitHub

PyNUFFT: Python non-uniform fast Fourier transform

A minimal "getting start" tutorial is available at https://pynufft.readthedocs.io/en/latest/index.html. This package reimplements the min-max interpolator (Fessler ...
The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
GitHub

Forest Light Analyzer Python package: FLApy

Forest Light Analyzer python package (FLApy) is a python package for assessing light availability(LAv) condition and analysing Light availability Heterogeneity at any observers within forest using ...
The Hacker News

Malicious PyPI Package Impersonates SymPy, Deploys XMRig Miner on Linux Hosts

A new malicious package discovered in the Python Package Index (PyPI) has been found to impersonate a popular library for symbolic mathematics to deploy malicious payloads, including a cryptocurrency ...