The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
GitHub

Lightweight Python bindings for zig

py.zig provides a lightweight interface for creating python extensions in zig. Since these types have the same memory representation as the c-equivalent you can safetly use @ptrCast and pass them to ...
GitHub

A super-repository for managing a set of packages used for processing the BraiDyn-BC data files.

If you intend to perform DeepLabCut-based atlas registration, we recommend installing DeepLabCut/Tensorflow first, before installation of the libraries in this repository. In case you encounter issues ...