The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
XDA Developers on MSN

4 PowerShell scripts I run on every Windows install

Get your fresh install settled quickly with these 4 PowerShell scripts ...
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...
LinuxInsider

Weaponized Python and Linux Malware Target Executives and Cloud Systems

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...
GitHub

Reptile - Read Evaluate Print Terminal Input Loop Editor

Command Lines can be scary. Websites feel much safer. Reptile gives you simple, scalable and safe web terminals. This will start a simple terminal with no commands enabled. You can still 'run' a few ...
GitHub

Execute PowerShell scripts or commands silently with no console window

QuietShell is a command-line application for headless PowerShell execution supporting both in-process runspaces and out-of-process execution models. QuietShell eliminates console window visibility ...