A malicious Python package, ‘discordpydebug’, disguised as a debugging tool for Discord developers, was discovered to be a remote access trojan. Targeting Discord bot developers, it accumulated over 11,000 downloads, creating a backdoor to systems for unauthorized access. Its stealthy design allowed it to evade many security measures, raising concerns about open-source supply chain vulnerabilities.
The systemd 261 release brings a software TPM, new OS installer
Linux distributions that ship systemd as their init system now have a new version to track. The systemd 261 update adds a cloud metadata subsystem,
