CastleRAT and CastleLoader, active since March 2025, spread malware via phishing and GitHub repos, enabling data theft.

The Python Software Foundation warned users this week that threat actors are trying to steal their credentials in phishing attacks using a fake Python Package Index (PyPI) website.

Programming language source code vulnerability mining is crucial to improving the security of software systems, but current research is mostly focused on the C language field, with little attention ...

According to a detailed report by SentinelLabs, the framework behind this operation, dubbed AkiraBot, has successfully bypassed spam detection filters, delivering AI-generated messages to over ...

Open-source code repository says ‘far-right forces’ are behind massive spam attacks Codeberg says abusive spam emails sent to its users are the result of a far-right hate campaign.

In this paper, we propose an innovative deep learning-based model designed to detect potential security vulnerabilities in source code. The model is pretrained on the open-source PyPI code repository ...

Attention Python developers! A malicious package named "crytic-compilers" was found on PyPI, delivering the Lumma information stealer.

Project Overview Welcome to our collaborative Spam Detection System in Python project! This system utilizes a combination of classification and regression algorithms to accurately categorize messages ...