Top open source PyPI package with over 1 million downloads each month hacked to send out malware

This was not a case of stolen credentials, but rather of vulnerability exploitation.
InfoQ

npmx Reaches Alpha: Community Driven Alternative Browser for the npm Registry

Daniel Roe and over 250 contributors. It emphasizes speed and features absent in the official npmjs.com interface, such as ...

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...
SecurityWeek

Easily Exploitable ‘Pack2TheRoot’ Linux Vulnerability Leads to Root Access

Pack2TheRoot, a high-severity vulnerability in PackageKit, allows users to install packages on Linux systems with root ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hundreds of GitHub accounts were accessed using credentials stolen in the VS Code GlassWorm campaign. Threat actors have been abusing credentials stolen in the VS Code GlassWorm campaign to hack ...
CSOonline

Compromised npm package silently installs OpenClaw on developer machines

A new security bypass has users installing AI agent OpenClaw — whether they intended to or not. Researchers have discovered that a compromised npm publish token pushed an update for the widely-used ...
CNX Software

DFRobot HUSKYLENS 2 AI camera review – From built-in AI samples to training a custom model to detect elephants

Hello, today I am going to review the HUSKYLENS 2, released in October 2025. It is the next generation of HUSKYLENS, an AI vision sensor equipped with a Kendryte K230 dual-core RISC-V SoC with a 6 ...
Geeky Gadgets

From One Config, Nyx Builds Your macOS Tools, Services, and App Store Software Every Time

What if you could take total control of your macOS system, managing packages, configurations, and even App Store installations, all from a single, unified tool? Bold claim? Perhaps. But that’s exactly ...
Windows Central

The 7 apps I always install first on a Windows 11 PC — and they're all FREE

In a job like this, you spend more time than most setting up Windows 11 devices, and these are the first apps I have to install. When you purchase through links on our site, we may earn an affiliate ...