Pro tip, don't install PowerShell commands without approval A team of data thieves has doubled down by developing its ...

CastleRAT and CastleLoader, active since March 2025, spread malware via phishing and GitHub repos, enabling data theft.

According to ReversingLabs' 2025 Software Supply Chain Security Report, 14 of the 23 crypto-related malicious campaigns in ...

Researchers at the Checkmarx cybersecurity firm sounded the alarm on a dangerous form of malware uploaded to the Python Package Index (PyPI) — a platform for Python developers to download and ...

IntroductionAPT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima) is a North Korean-aligned threat actor active since at least 2012. APT37 primarily targets South Korean individuals ...

The growing threat of malware in the Python ecosystem Today, more than half of the world's developers rely on Python, a programming language that has become the foundation of modern AI and machine ...

These malicious packages - deploying cyberespionage backdoors and targeting Windows and Linux systems - were found circulating via the PyPI repository. Security experts expect the problem to continue.

Hackers are exploiting Ethereum smart contracts to inject malware into popular NPM coding libraries, using packages to run ...

Static analysis of the malware’s ELF executable revealed a 64-bit, statically linked ELF with intact debug information, indicating Python code compiled with Cython. The code is relatively short, ...

Members of the North Korean hacker group Lazarus posing as recruiters are baiting Python developers with coding test project for password management products that include malware.

Gripped by Python: 5 reasons why Python is popular among cybersecurity professionals Python’s versatility and short learning curve are just two factors that explain the language’s 'grip' on ...

For the second time since March, a cybersecurity firm has discovered troubling malware software packages uploaded to the Python Package Index platform.