News

Ars Technica7y
Devs unknowingly use “malicious” modules snuck into official Python repository
The official repository for the widely used Python programming language has been tainted with modified code packages ... of Python's official secret module, an app's cryptographic functions ...
InfoWorld2y
Intro to Nuitka: A better way to compile and distribute Python
As Python’s ... depending on how many modules the program uses. The switch ensures that all the imports required throughout the program are traced from the import statements and compiled together.
TechRadar2mon
Malicious Python packages are stealing vital data, and have been downloaded thousands of times already
Researchers found three malicious PyPI packages, two targeting bitcoin ... They claim to be a fix for a legitimate Python module named “bitcoinlib”, which contains features for creating ...
Computing11mon
Malicious Python packages found exfiltrating user data to Telegram bot
given the widespread use of Python. In March, North Korean hacking group Lazarus was found to have uploaded malicious packages to the repository. In 2022, compromised versions of ctx, a module ...
TechRadar2y
Malicious Python packages dump your AWS secrets online
Multiple malicious Python packages leaking sensitive user ... In a blog post, Sonatype security researcher Ax Sharma says the packages: loglib-modules, pyg-modules, pygrata, pygrata-utils, and ...