Hackers Use TikTok Videos to Distribute Vidar and StealC Malware via ClickFix Technique

ViciousTrap Uses Cisco Flaw to Build Global Honeypot from 5,300 Compromised Devices

300 Servers and €3.5M Seized as Europol Strikes Ransomware Networks Worldwide

SafeLine WAF: Open Source Web Application Firewall with Zero-Day Detection and Bot Protection

U.S. Dismantles DanaBot Malware Network, Charges 16 in $50M Global Cybercrime Operation

Cybersecurity researchers have warned of a malicious campaign targeting users of the Python Package Index (PyPI) repository with bogus libraries masquerading as "time" related utilities, but harboring hidden functionality to steal sensitive data such as cloud access tokens.
Software supply chain security firm ReversingLabs said it discovered two sets of packages totaling 20 of them. The packages

Headline

Malicious PyPI Packages Stole Cloud Tokens—Over 14,100 Downloads Before Removal

The Hacker News: Latest News