Python rejects $1.5M grant from U.S. govt. fearing ethical compromise

The Python Software Foundation (PSF) has withdrawn its $1.5 million grant proposal to the U.S. National Science Foundation ...

The Python Software Foundation has turned down a $1.5 million US government grant amid ethical concerns

$1.5 Million is no small amount of money to turn down, especially in the form of a US government grant. However, the Python ...

Python plan to boost software security foiled by Trump admin’s anti-DEI rules

The Python Software Foundation has rejected a $1.5 million government grant because of anti-DEI requirements imposed by the ...

Hackers Turn RedTiger Tool Into Malware Stealing Gamers’ Discord Accounts

A new cyber threat is sweeping through the gaming community — hackers have turned a legitimate cybersecurity testing tool ...

Infostealer for Windows, macOS and Linux found in ten packages on npm

The npm packages were available since July, have elaborately obfuscated malicious routines, and rely on a fake CAPTCHA to ...
The Hacker News

Researchers Expose GhostCall and GhostHire: BlueNoroff's New Malware Chains

Victims of the GhostCall campaign span several infected macOS hosts located in Japan, Italy, France, Singapore, Turkey, Spain ...
The Hacker News

Google Identifies Three New Russian Malware Families Created by COLDRIVER Hackers

Google reveals COLDRIVER’s new malware families NOROBOT, YESROBOT, and MAYBEROBOT amid rising cyber espionage.
CSO Online

Malicious packages in npm evade dependency detection through invisible URL links: Report

Researchers outline how the PhantomRaven campaign exploits hole in npm to enable software supply chain attacks.
SecurityWeek

136 NPM Packages Delivering Infostealers Downloaded 100,000 Times

For the past four months, over 130 malicious NPM packages deploying information stealers have been collectively downloaded ...

Hackers steal Discord accounts with RedTiger-based infostealer

Attackers are using the open-source red-team tool RedTiger to build an infostealer that collects Discord account data and ...
HealthcareInfoSecurity

Russia's Coldriver Revamps Malware to Evade Detection

Russia-linked threat group Coldriver rapidly replaced its exposed malware with a stealthier PowerShell variant, using fake ...
CSO Online

‘I am not a robot’: Russian hackers use fake CAPTCHA lures to deploy espionage tools

Researchers caution that the group’s rapid pivots and targeted filtering complicate detection and require behavior-based ...