IEEE

Malicious Packages Lurking in User-Friendly Python Package Index

Abstract: Python has gradually become one of the most important programming languages through artificial intelligence's development. PIP, a package management tool for Python, offers one-click ...

New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
GitHub

PyNUFFT: Python non-uniform fast Fourier transform

A minimal "getting start" tutorial is available at https://pynufft.readthedocs.io/en/latest/index.html. This package reimplements the min-max interpolator (Fessler ...
How-To Geek on MSN

R is niche, but it's the language every statistician actually uses

It may be niche, but it's a big niche in a data-driven world.
GitHub

A Python package for processing Polarimetric Synthetic Aperture Radar (PolSAR) data.

This award was presented by the Indian Society of Remote Sensing (ISRS) during the Innovation Contest for Geo Spatial Information Technology-2025. Why this work was recognized: Our project was honored ...
Bleeping Computer

Backdoored Telnyx PyPI package pushes malware hidden in WAV audio

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver credential-stealing malware hidden inside a WAV file. Earlier today, the ...