Beware: Fake DeepSeek PyPI Packages Spreading Malware
The Supply Chain Security team at Positive Technologies Expert Security Center (PT ESC) recently intercepted and mitigated a malicious campaign targeting users of the...
AsyncRAT Exploiting Python and TryCloudflare for Covert Malware Distribution
The Forcepoint X-Labs research team has uncovered a resurgence of AsyncRAT, a sophisticated remote access trojan (RAT) that exploits legitimate platforms such as Python...
PyPI Implements Project Archival to Block Exploits Malicious Package
In a significant move to enhance transparency and bolster supply-chain security, the Python Package Index (PyPI) has announced support for project archival.
This new...
Hackers Weaponize npm, PyPI, & Ruby for Devastating Exploit Packages
OAST (Out-of-band Security Testing) tools are designed for ethical security researchers to perform network interactions beyond traditional testing scopes, which can be misused by...
New SwaetRAT Malware Spreads via Weaponized Python Scripts
The Python script exhibits malicious behavior by leveraging native Windows libraries (ctypes, windll, wintypes) and reflection (System.Reflection) to interact with the operating system at...
