The website for the popular JDownloader download manager was compromised earlier this week to distribute malicious Windows ...

Fake OpenAI Privacy Filter hit #1 on Hugging Face with 244,000 downloads, spreading infostealer malware to Windows users.

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...

A malicious version of the PyTorch Lightning package published on the Python Package Index (PyPI) delivers a ...

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

Companies are treating these repositories like content delivery networks - now the Linux Foundation and colleagues are saying ...

A stealthy Python-based backdoor framework capable of long-term surveillance and credential theft has been identified ...

The PCPJack worm targets cloud environments and vulnerable web applications to remove TeamPCP infections and steal ...

Fake OpenAI Privacy Filter repo hits #1 on Hugging Face with 244K downloads deploying Sefirah infostealer malware.

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

In early May, the JDownloader website delivered malware. This is reminiscent of Daemon Tools, which have since reacted.

The attacks compromise aerospace and drone firms' systems to exfiltrate GIS files, terrain models, and GPS data to gain a clear picture of analysts' intel.