Operation Navy Ghost is targeting Python developers who build Telegram bots by hiding backdoors inside trojanized Pyrogram forks uploaded to PyPI. The campaign has been active since November 2025, ...
A campaign active since last November has been targeting Python developers building Telegram bots with trojanized Pyrogram ...
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
Security researchers at Cybernews discovered on June 12 what they describe as one of the largest credential databases ever left exposed online — a publicly accessible Elasticsearch cluster holding 24 ...
GitGuardian is introducing Developer Endpoint Protection, extending its secrets and non-human identity (NHI) security ...
Our tracking of OceanLotus activities from 2024–2026 reveals a shift in operational focus. During this period, the Vietnam-aligned OceanLotus adopted a more selective approach to external operations ...
MCP Server(Model Context Protocol 服务器)是让 AI 模型调用外部工具与数据的标准化接口,由 Anthropic 于 2024 年底开源后迅速成为行业标准。截至 2026 年 4 月,Python SDK 在 PyPI 的月下载量已突破 1.64 亿次,公开目录收录的 MCP 服务器超过 20,000 个,OpenAI、Google、Microsoft 相继采纳同 ...
The most recent variants of the self-propagating attacks are named Miasma and Hades. The payload used in the Red Hat attack contained the string “Miasma: The Spreading Blight”, which appeared in ...
On Monday, Russian users found they could no longer reach PyPI, the package repository that Python developers rely on for code libraries.
The post Mini Shai-Hulud: Frequently asked questions about the TeamPCP npm and PyPI supply chain campaign appeared first on Tenable Blog. A self-propagating worm has compromised more than 170 npm and ...
Morgan is a PyPI mirror for restricted/offline networks/environments, where access to the Internet is not available. It allows creating small mirrors that can be used by multiple "client" Python ...