The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
eWeek

Moltbook Bots Build Lobster Cult

Who needs humans when a purported 1.5 million agents trade lobster memes and start their own religion? Moltbook, vibe-coded by Octane AI founder Matt Schlicht in a weekend (he cla ...
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...
GitHub

Polygon.io Data Downloader for Backtesting

A user-friendly Python GUI application to download historical stock and cryptocurrency data from Polygon.io. The script is designed to fetch intraday data for a specified ticker, date range, and ...
GitHub

A python script to scan for Apache Tomcat server vulnerabilities.

$ ./ApacheTomcatScanner.py -h Apache Tomcat Scanner v3.4 - by Remi GASCOU (Podalirius) usage: ApacheTomcatScanner.py [-h] [-v] [--debug] [-C] [--show-cves ...