TechRadar

Python libraries used in top AI and ML tools hacked - Nvidia, Salesforce and other libraries all at risk

Palo Alto found critical flaws in AI/ML libraries NeMo, Uni2TS, and FlexTok Vulnerabilities allowed arbitrary code execution via malicious model metadata All patched by mid-2025; no exploitation ...
Infosecurity-magazine.com

Two Additional Malicious Python Libraries Found on PyPI Repository

Two more malicious Python packages have been discovered in the Python Package Index (PyPI) repository, days after security researchers from Check Point spotted 10 of them. The two additional packages ...
Bleeping Computer

Popular Python and PHP libraries hijacked to steal AWS keys

PyPI module 'ctx' that gets downloaded over 20,000 times a week has been compromised in a software supply chain attack with malicious versions stealing the developer's environment variables. The ...
WeLiveSecurity

Gripped by Python: 5 reasons why Python is popular among cybersecurity professionals

The Python programming language, born from the creative genius of Guido van Rossum as far back as some 35 years ago, has evolved into a crucial tool for professionals working in various areas, ...
Infosecurity-magazine.com

New Malicious Python Libraries Found on PyPI Repository

Security researchers from Check Point have spotted 10 malicious packages on Python Package Index (PyPI), the primary Python package index used by Python developers. The first of them was Ascii2text, a ...