Techzine Europe

Malicious Python package poses new supply chain threat

The open-source package elementary-data, with over a million downloads per month, has been compromised. Attackers exploited a vulnerability in a GitHub ...

PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...
Hosted on MSN

Three supply chain attacks hit npm, PyPI, and Docker Hub

Between April 21 and 23, 2026, three coordinated supply chain campaigns targeted npm, PyPI, and Docker Hub, aiming to steal developer and CI/CD credentials. The incidents included a trojanized ...
Infosecurity-magazine.com

Python Malware Poses DDoS Threat Via Docker API Misconfiguration

Security researchers have identified a new cyber-threat targeting publicly exposed instances of the Docker Engine API. In this campaign, attackers exploit misconfigurations to deploy a malicious ...
heise online

Cloud-native: Docker containers and Python services with .NET Aspire 8.1

Microsoft's .NET Aspire framework brings innovations for cloud-native development - with a focus on Docker containers and the orchestration of Python services. Microsoft has presented the new version ...
CSOonline

Python GitHub token leak shows binary files can burn developers too

Scrubbing tokens from source code is not enough, as shown by the publishing of a Python Software Foundation access token with administrator privileges to a container image on Docker Hub. A personal ...
TechRepublic

How to build a Docker image and upload it to Docker Hub

How to build a Docker image and upload it to Docker Hub Your email has been sent If you’re just starting your journey with containers and Docker, you’re probably doing some of your work within your on ...