Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to distribute credential‑stealing payloads.
The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
GitHub

dakhama-mehdi/Harden-Sysvol

Harden‑Sysvol is a PowerShell module that audits Group Policy and analyzes the content of files in the SYSVOL folder to detect sensitive data, misconfigurations, or suspicious elements such as hidden ...
XDA Developers on MSN

3 PowerShell scripts I use for every fresh Windows install

These save me hours, time that would otherwise be spent configuring Windows from scratch ...

WhatsApp Web malware spreads banking Trojan automatically

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations. Boto Cor-de-Rosa campaign tracks delivery success.
GitHub

Universal context usage analyzer for Claude Code - Works from any directory in any project

A powerful /context command and supporting scripts that provide detailed analysis of your Claude Code session's token usage and context efficiency. Automatically detects your project configuration and ...