CVE-2022-34064

The Zibal package in PyPI v1.0.0 was discovered to contain a code execution backdoor. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...

CVE-2022-34057

The Scoptrial package in PyPI version v0.0.5 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...

RootInteractive 安全漏洞

RootInteractive is an individual developer's code for interactively visualizing multidimensional data in ROOT or native Python format Panda, numpy. A security vulnerability exists in RootInteractive. An attacker exploited the vulnerability to access sensitive user information and digital currency...

Over 200 Apps on Play Store Caught Spying on Android Users Using Facestealer

More than 200 Android apps masquerading as fitness, photo editing, and puzzle apps have been observed distributing spyware called Facestealer to siphon user credentials and other valuable information. "Similar to Joker, another piece of mobile malware, Facestealer changes its code frequently, thu...

A 'Blockchain Bandit' Is Guessing Private Keys and Scoring Millions

The larger lesson of an ongoing Ethereum crime spree: Be careful about who's generating your cryptocurrency keys...