New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
How-To Geek on MSN

These 5 Python libraries turned me into a better data analyst than Excel ever could

The power of Python trumps Excel workbooks.
appliedclinicaltrialsonline

The Data Harmonization Imperative: How AI Is Solving Clinical Research's Biggest Bottleneck

As clinical trials grow increasingly complex and multi-modal, the pharmaceutical industry is pivoting toward AI-driven agentic orchestrators and lakehouse architectures to untangle disparate data ...

Strava Tightens API Access as AI Scraping Concerns Grow Ahead of IPO

Strava is tightening API access and login requirements to curb AI scraping and data misuse ahead of its proposed IPO. Here’s ...

For the 2nd time in weeks, Microsoft packages laced with credential stealer

Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...

DigMethpy: An AI-driven platform for accelerating methane pyrolysis catalyst discovery

Researchers have developed a new artificial intelligence-powered platform that could significantly speed up the discovery of ...
The Next Web

A popular OpenAI Codex tool with 29,000 weekly downloads has been quietly stealing developer tokens for a month

The codexui-android npm package silently exfiltrated OpenAI Codex auth tokens to an attacker server for a month, affecting 29,000 weekly downloads.
Microsoft

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 maliciously modified packages across more than 90 versions under the @redhat-cloud-services npm scope. The ...