SecurityWeek

Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs

A new ClickFix attack that leverages a Nuitka loader targets macOS users with the Python-based Infiniti Stealer malware.

Backdoored Telnyx PyPI package pushes malware hidden in WAV audio

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...
eWeek

Data science in the age of AI: From experimentation to scalable, governed systems

AI is transforming data science, but scaling it remains a challenge. Learn how organizations are building governed, ...
python-hub

EP1: How Netflix’s MediaFM Understands Movies Using AI

AdamW: A standard optimizer used to train deep learning models. Muon: A newer optimizer that Netflix found performs better ...
The Hacker News

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...
CSO Online

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes ...
Infosecurity Magazine

Security Flaw in AWS Bedrock Code Interpreter Raises Alarms

A method for exfiltrating sensitive data from AI-powered code execution environments using domain name system (DNS) queries ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python ...

Google's Gemini Embedding 2 arrives with native multimodal support to cut costs and speed ...

While previous embedding models were largely restricted to text, this new model natively integrates text, images, video, audio, and documents into a single numerical space — reducing latency by as muc ...
WBUR

Python’s Drum | Ep. 309

Think about someone you’d call a friend. What’s it like when you’re with them? Do you feel connected? Like the two of you are in sync? In today’s story, we’ll meet two friends who have always been in ...
Bleeping Computer

Malicious Blender model files deliver StealC infostealing malware

A Russian-linked campaign delivers the StealC V2 information stealer malware through malicious Blender files uploaded to 3D model marketplaces like CGTrader. Blender is a powerful open-source 3D ...