Technical

Bringing back PhillyPUG, one of Philadelphia’s longest-running tech communities

This is a guest post by Justin Chapman, CTO at Anuvi, and Aaron Brock, director of Gen AI Cloud Security at S&P Global, the new co-organizers of the Philadelphia Python Users Group. A reboot! We are ...
Technical.ly

Philly’s tech meetups are finding fresh energy — if organizers can keep them going

COVID-era disruption left local gatherings uneven, while funding, burnout and access still test how technologists connect in ...

New team song and 18ft python: How Geoff Parling united Leicester dressing room

There is nothing flash about the changing rooms at Oval Park, the longstanding training base of Leicester Tigers. There are ...

Fives ProSim Launches ProSimPlus Python API, a New Generation of Python Driven Process Simulation

Fives ProSim, a subsidiary of the Fives Group and an expert in industrial process simulation and optimization, announces the release of ProSimPlus Python API. This new solution enables users to run ...
Dark Reading

'Hades' Campaign Against PyPI Puts New Spin on Shai-Hulud

Threat actors have struck the software supply chain yet again, this time hitting the Python Package Index (PyPI) with Mini Shai-Hulud in an attempt to spread poisoned code. In the latest campaign, ...

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP, simultaneously compromised Microsoft's durabletask Python ...
The Hacker News

Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues

Microsoft confirms it temporarily removed GitHub repos after Miasma worm compromised 73 of its open-source projects to inject ...
The Hacker News

Hacking Salesforce Sites With an LLM Agent

AI agent exploited Salesforce sites; 263 objects, 55 Apex methods exposed at one portal, leading to PII and file leaks.
InfoWorld

Supply chain battles intensify as takedowns meet AI-driven noise

CrowdStrike, Google, and the Shadowserver Foundation dismantled the GlassWorm malware operation, but experts say the broader ...
Columbia Journalism Review

Scraper Factories

Writing a scraper or two for a story is (usually) a fairly straightforward task for a data journalist who knows a bit of code ...

Iranian government, not hacktivist group, breached LA Metro system, security firm says

A report by Israel-based Gambit Security dismisses the hackers’ claims of being patriotic but unaffiliated activists.