Threat actors launch zero-day attack against Python Package Index (PyPI) packages
Researchers have discovered threat actors launching zero-day attack against packages in the Python Package Index (PyPI) repository.
Python
ZuoRAT targets SOHO devices to launch sophisticated multi-stage cyber attacks
Threat actors are using a multi-stage malware dubbed ZuoRAT to exploit small office/home office (SOHO) routers and launch sophisticated attacks against North American and European networks.
NotLegit: 4-year old Microsoft Azure App Service 0-day vulnerability affects source code repositories
A four-year old Microsoft Azure App Service 0-day vulnerability dubbed “NotLegit” affects hundreds of source code repositories.
Malicious PyPI software packages found stealing payment card numbers and injecting code
Security researchers have discovered malicious software packages from Python’s official third party software package repository PyPl stealing payment card numbers and injecting code.
Python 2 fast approaching EOL, poses future security risks
UK’s cybersecurity organization NCSC issued a warning that Python 2 is fast approaching its end-of-life (EOL) on January 1, 2020. After that time, organizations will no longer be able to get bug fixes or security patches.
PyLocky ransomware decryption tool
Talos security researchers have developed a new decryption tool that victims could potentially use to recover files locked out by PyLocky ransomware.