New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...

New GitHub Zero-Day Exposed Developer Tokens to Attackers

A github.dev flaw could let attackers steal GitHub OAuth tokens through a one-click attack, exposing private repositories and ...
Bleeping Computer

Credit card theft campaign abuses Stripe to host stolen payment info

A new Magecart campaign is using Stripe's API infrastructure to host the credit card-stealing payload and the data exfiltrated from checkout pages. The entire malicious activity relies on Google Tag ...
InfoWorld

Programming Languages

The Mojo language is finally available in a 1.0 release. It’s billed as “write like Python, run like C++”, and it offers compatibility with the Python ecosystem along with many memory safety metaphors ...
NPR

Code Switch

May 30, 2026 • The Supreme Court is about to rule on whether states can ban transfeminine student athletes from playing on girls' and women's teams. But we're talking to journalist Imara Jones about ...
NPR

Code Switch

What's CODE SWITCH? It's the fearless conversations about race that you've been waiting for. Hosted by journalists of color, our podcast tackles the subject of race with empathy and humor. We explore ...