PyPI

Magazine Insights

Chinese-Made Villager AI Pentest Tool Raises Cobalt Strike-Like Concerns

AndyC 17 September 2025

Villager is being pitched as a legitimate AI-powered pentest tool for red teams, but the platform, made by Chinese company...

Read More

Hacking

Malicious PyPI Package Posing as Solana Tool Stole Source Code in 761 Downloads

AndyC 14 May 2025

Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) repository that purports to be an application...

Read More

Hacking

Deceptive Python Libraries on PyPI Downloaded Over 39,000 Times, Pilfer Confidential Data

AndyC 6 April 2025

A group of cybersecurity analysts have detected deceitful modules within the Python Package Index (PyPI) archive that have been created...

Read More

Hacking

PyPI Adds Archiving Status to Notify Users Regarding Unmaintained Python Packages

AndyC 4 February 2025

The caretakers of the Python Package Index (PyPI) repository have revealed a fresh capability that empowers package creators to mark...

Read More

Hacking

PyPI Python Library “aiocpa” Detected Sending Encryption Keys via Telegram Bot

AndyC 26 November 2024

After a recent update, the developers at the Python Package Index (PyPI) have isolated the library "aiocpa" due to its...

Read More

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

AndyC 19 December 2025

In 2024, ESET researchers noticed previously undocumented malware in the network of a Southeast Asian governmental entity. This led us to uncover even more new...

Read More

ESET Threat Report H2 2025

ESET Threat Report H2 2025

AndyC 17 December 2025

ESET Research A view of the H2 2025 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research...

Read More

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

AndyC 16 December 2025

Business Security Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found Tony Anscombe 12 Dec 2025 • ...

Read More

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

AndyC 16 December 2025

Business Security Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found Tony Anscombe 12 Dec 2025 • ...

Read More

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

AndyC 16 December 2025

Business Security Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found Tony Anscombe 12 Dec 2025 • ...

Read More

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

AndyC 16 December 2025

Business Security Behind the polished exterior of many modern buildings sit outdated systems with vulnerabilities waiting to be found Tony Anscombe 12 Dec 2025 • ...

Read More

Surge of OAuth Device Code Phishing Attacks Targets M365 Accounts

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

AndyC 20 December 2025

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

AndyC 20 December 2025

Vendor News

Microsoft 365 accounts targeted in wave of OAuth phishing attacks

AndyC 20 December 2025

State-linked and criminal hackers use device code phishing against M365 users

State-linked and criminal hackers use device code phishing against M365 users

AndyC 20 December 2025

Three ways teams can tackle Iran’s tangled web of state-sponsored espionage

Three ways teams can tackle Iran’s tangled web of state-sponsored espionage

AndyC 20 December 2025