Russian hackers use fake CAPTCHA tests to spread new malware families across multiple targets

Russian hackers use fake CAPTCHA tests to spread dangerous malware targeting governments and journalists. Learn how to ...
Bleeping Computer

New Python malware backdoors VMware ESXi servers for remote access

A previously undocumented Python backdoor targeting VMware ESXi servers has been spotted, enabling hackers to execute commands remotely on a compromised system. VMware ESXi is a virtualization ...
CoinTelegraph

Crypto-stealing malware discovered in Python Package Index — Checkmarx

According to cybersecurity firm Hacken, financial losses from crypto hacks topped $440 million in the third quarter of 2024. Researchers at the Checkmarx cybersecurity firm sounded the alarm on a ...
TechRadar

Python Q&A site StackExchange hijacked to spread malware disguised as answers

Researchers from Checkmarx have uncovered a sophisticated campaign in which attackers built credibility within the Python Package Index (PyPI) community to release crypto-draining, data-stealing ...
The Victoria Advocate

Introducing Chainguard Libraries for Python: Malware-Resistant Dependencies Built Entirely from Source

New Python language libraries with end-to-end integrity help organizations build software safer and more efficiently KIRKLAND, Wash., May 14, 2025 /PRNewswire/ -- Chainguard, the secure foundation for ...
Dark Reading

Novel PyPI Malware Uses Compiled Python Bytecode to Evade Detection

In a new twist on software supply chain attacks, researchers have discovered a Python package hiding malware inside of compiled code, allowing it to evade ordinary detection measures. On April 17, ...

One of the most devious malware strains might have been cracked - and it's all thanks to Gen AI

Cybersecurity researchers from Check Point Research may have just cracked one of the most devious malware families to have ...
Hosted on MSN

Sneaky Serpentine#Cloud slithers through Cloudflare tunnels to inject orgs with Python-based malware

A sneaky malware campaign slithers through Cloudflare tunnel subdomains to execute in-memory malicious code and give unknown attackers long-term access to pwned machines.… Securonix threat hunters ...

The Python Software Foundation has turned down a $1.5 million US government grant amid ethical concerns

$1.5 Million is no small amount of money to turn down, especially in the form of a US government grant. However, the Python ...
CSOonline

Cryptojacking attack on cloud workloads uses fileless Python malware

With increased deployment of security solutions on cloud infrastructure, hackers have started adopting detection evasion tactics from Windows desktop computers to cloud environments. One such tactic ...
Infosecurity-magazine.com

Python Malware Poses DDoS Threat Via Docker API Misconfiguration

Security researchers have identified a new cyber-threat targeting publicly exposed instances of the Docker Engine API. In this campaign, attackers exploit misconfigurations to deploy a malicious ...
Dark Reading

Millions of Facebook Business Accounts Bitten by Python Malware

Attackers are targeting millions of Facebook business accounts with malicious messages, sent via Facebook Messenger from a botnet of fake and hijacked personal Facebook accounts. The goal is to spread ...