Security researchers found malware packages using the Ethereum blockchain to conceal malicious commands on GitHub repos.

The Python Software Foundation warned users this week that threat actors are trying to steal their credentials in phishing attacks using a fake Python Package Index (PyPI) website.

Security researchers at ReversingLabs have discovered a novel attack that used compiled Python code to evade detection. According to ReversingLabs reverse engineer Karlo Zanki, this could be the first ...

Attackers are in a constant battle with security companies to evade detection, and the most common evasion technique when it comes to plaintext code is obfuscation.

Attackers uploaded fake Python packages to PyPI that posed as Bitcoinlib tools and targeted wallet data. The malware infected crypto development environments, stole private keys ...