PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

Official SAP npm packages compromised to steal credentials

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...

Top open source PyPI package with over 1 million downloads each month hacked to send out malware

This was not a case of stolen credentials, but rather of vulnerability exploitation.
RSF

World Press Freedom Index 2025: over half the world's population in red zones

The 2025 World Press Freedom Index by Reporters Without Borders (RSF) found that more than half of the world's population lives in a country where press freedom is in a “very serious” situation — that ...