TechCrunch

Someone has publicly leaked an exploit kit that can hack millions of iPhones

Last week, cybersecurity researchers uncovered a hacking campaign targeting iPhone users that used an advanced hacking tool called DarkSword. Now someone has leaked a newer version of DarkSword and ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

The GlassWorm malware campaign is being used to fuel an ongoing attack that leverages the stolen GitHub tokens to inject malware into hundreds of Python repositories. "The attack targets Python ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hundreds of GitHub accounts were accessed using credentials stolen in the VS Code GlassWorm campaign. Threat actors have been abusing credentials stolen in the VS Code GlassWorm campaign to hack ...
GitHub

bindings: python: bump minimal setuptools required

We currently call out v69, but v77 added support for PEP 693. This generally works because when the build environment gets created for generating the sdist or wheel it pulls the latest setuptools ...
GitHub

ESMPY 8.9.0 issue on wcoss2

Successfully built esmpy Installing collected packages: pytz, f90nml, tzdata, six, setuptools, PyYAML, pyshp, pyparsing, pillow, packaging, numpy, mpi4py, MarkupSafe, kiwisolver, fonttools, cycler, ...
Bleeping Computer

CISA warns of actively exploited Git code execution flaw

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning of hackers exploiting an arbitrary code execution flaw in the Git distributed version control system. The agency has added the ...