Search results
PyPI stops signing up new users to try and block malware campaign
TechRadar via Yahoo News· 3 months agoThe Python banner logo on a computer screen running a code editor. Python Package Index (PyPI), the...
PyPI brings in mandatory 2FA for all software publishers following recent security issues
TechRadar via Yahoo News· 1 year agoPassword PyPI has announced that all users who maintain a project or organization on the platform...
Python developers targeted with fake PyPl packages
TechRadar via Yahoo News· 2 weeks agoRed padlock open on electric circuits network dark red background. Another day, another malicious package being discovered on the Python Package Index...
PyPl suspends new projects and user sign-ups following flood of malware
TechRadar via Yahoo News· 1 year agoMagnifying glass enlarging the word 'malware' in computer machine code The world’s biggest...
Protestware on the rise: Why developers are sabotaging their own code
TechCrunch· 2 years agoIf combating attacks and hijackings of legitimate software on open source registries like npm...
GitHub repositories are being attacked and wiped in new extortion scam
TechRadar via Yahoo News· 2 weeks ago. GitHub users are falling victim to an ongoing extortion campaign that threatens to delete their...
Hackers are using malicious Microsoft VSCode extensions to steal passwords
TechRadar via Yahoo News· 1 year agoIllustration of a laptop with a magnifying glass exposing a beetle on-screen Cybersecurity...
Cloudflare Tunnels are being used to breach networks
TechRadar via Yahoo News· 10 months agoID theft A hacking method that involves abusing a legitimate Cloudflare feature to steal people’s data and persist on compromised endpoints is gaining...
The EU’s Product Liability Directive could kill open source
TechRadar via Yahoo News· 11 months agoA computer graphic showing an abstract computer network image. The rate of software supply chain...
Software supply chain security is broader than SolarWinds and Log4J
TechCrunch ExtraCrunch· 2 years agoLog4J epitomizes the garbage-in, garbage-out problem of open source software: If you're grabbing...