SecurityWeek

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
How-To Geek on MSN

These 7 Python libraries are useful even if you're not a developer

Every Python developer knows some or all of these libraries, because they’re stable, reliable, and excellent at what they do.
Brian Barczyk on MSN

They didn't think it was possible to lose a 19 foot python - they were wrong

Butterscotch, a 19-foot python, goes missing from her enclosure even though the doors are shut and the lock is still on.
The Hacker News

Google Details Turla's New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks

Google links Turla to STOCKSTAY, a new .NET backdoor used in phishing attacks against Ukraine government and military targets ...
The Hacker News

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

SentinelOne details Gaslight, a Rust-based macOS implant linked to North Korea-aligned actors that uses prompt injection to ...
cryptopolitan

Microsoft, Google patch flaws as Cordyceps spread across open-source repositories

Security researchers at Novee found over 300 exploitable CI/CD workflow chains across repositories belonging to Microsoft, Google, Apache, Cloudflare, and the Python Software Foundation. The flaws ...

Nokia, Databricks demonstrate unified data platform for autonomous networks

Press ReleaseNokia, Databricks demonstrate unified data platform for autonomous networks Proof of concept validates cloud-agnostic approach for ...