Researchers have discovered threat actors launching zero-day attack against packages in the Python Package Index (PyPI) repository.
A four-year old Microsoft Azure App Service 0-day vulnerability dubbed “NotLegit” affects hundreds of source code repositories.
Security researchers have discovered malicious software packages from Python’s official third party software package repository PyPl stealing payment card numbers and injecting code.
UK’s cybersecurity organization NCSC issued a warning that Python 2 is fast approaching its end-of-life (EOL) on January 1, 2020. After that time, organizations will no longer be able to get bug fixes or security patches.
Talos security researchers have developed a new decryption tool that victims could potentially use to recover files locked out by PyLocky ransomware.