Fabbaloo

Malware Campaigns Targets 3D Model Sites via Blender

It turns out that some participants post .blend files, which are used by the popular Blender open-source 3D modeling system.
Hoodline

AI Agent Attack on Matplotlib Maintainer Rattles Silicon Valley

According to GitHub, the PR was marked as a first-time contribution and closed by a Matplotlib maintainer within hours, as ...

Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers ...
The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...