The Hacker News

New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials

DEEP#DOOR embeds a Python RAT in a dropper script, using bore[.]pub C2 to steal credentials and evade Windows defenses, ...
CIOL

Anthropic Backs Python Security With $1.5 Million PSF Partnership

Anthropic has committed $1.5 million to the Python Software Foundation (PSF) under a two-year partnership aimed at strengthening security across Python’s core infrastructure and package ecosystem. The ...
Infosecurity Magazine

Deep#Door Python Backdoor Evades Detection On Windows

A stealthy Python-based backdoor framework capable of long-term surveillance and credential theft has been identified ...
techzine

Anthropic invests in Python ecosystem security

Anthropic is entering into a two-year partnership with the Python Software Foundation. The company is investing a total of $1.5 million in the security and further support of the Python ecosystem.
Dark Reading

Continued Use of Python 2 Will Heighten Security Risks

Nearly five months after the Python Software Foundation finally ended support for the Python 2 programming language, many developers are continuing to use it, heightening security risks for their ...
GitHub

developmentseed/action-python-security-auditing

Running bandit and pip-audit directly — or using the official focused actions (PyCQA/bandit-action and pypa/gh-action-pip-audit) — is a reasonable and common approach. Those tools and actions are fine ...
GitHub

Akhil-jagadale/python-security-monitoring-system

A lightweight Linux Security Monitoring Agent built in Python, designed to collect host metadata, installed package inventory, and run CIS Benchmark security checks on Ubuntu Linux systems. The agent ...