Most recent articles by:
Deep Shah
Deep is the Co-founder at Codezeros Technology. His strong business acumen and industry knowledge in the Blockchain industry make him one of the strongest pillars at Codezeros. He comes with a rich technological and business understanding to lead. His deep understanding of Blockchain technology integration is a key component of our success at Codezeros. He also contributes to the overall vision of the company's growth and development.
News
PyPI Spellchecker Packages Delivered Python RAT via Payload
Two malicious PyPI packages, spellcheckerpy and spellcheckpy, contained a hidden downloader that installs a Python RAT and were downloaded about 1,000 times.The payload was...
News
WhatsApp adds Strict Account Settings to fight spyware, Rust
Meta has added a Strict Account Settings mode in WhatsApp to protect high-risk users from advanced cyberattacks.The mode locks several settings to restrictive defaults,...
News
Malicious VS Code AI extensions exfiltrate dev code to China
Two malicious Visual Studio Code extensions with about 1.5 million installs exfiltrate source files to a China-based server.The extensions work as advertised while encoding...
News
TikTok Forms U.S. JV; ByteDance Keeps 19.9% Stake After EO25
TikTok formed a U.S. joint venture, with ByteDance retaining a 19.9% stake, to keep the service operating in the United States.
The new...
News
PyPI ‘sympy-dev’ package deploys XMRig miner via backdoor…
sympy-dev on PyPI impersonated the SymPy library and has been downloaded over 1,100 times since its January 17, 2026 release.The package modifies library routines...
News
PurpleBravo attacks exploit dev hiring, 3,136 IPs exposed…
PurpleBravo targeted at least 3,136 IP addresses and claimed 20 potential victim organizations across multiple regions.Attackers used fake recruiter/developer profiles, malicious code in developer...
News
ChainLeak in Chainlit exposes cloud API keys, enables SSRFs.
Chainlit contained two high-severity flaws that can leak files and enable SSRF from the server.Attackers could extract cloud API keys, database files, or internal...
News
LastPass phishing scam targets users, seeks master passwords
LastPass customers are being targeted by a new phishing campaign that asks for master passwords under the guise of urgent maintenance.The emails include specific...
