The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.
IEEE

A Large-Scale Security-Oriented Static Analysis of Python Packages in PyPI

Abstract: Different security issues are a common problem for open source packages archived to and delivered through software ecosystems. These often manifest themselves as software weaknesses that may ...
Android

Half of All Data Deletion Requests Never Actually Get Completed

A new report from Yorba reveals that nearly half of all data deletion requests submitted in 2025 went unresolved, despite being properly filed. Companies cite verification hurdles and operational ...