GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.
Purdue University

‘Privacy by design’: Purdue tech protects against identity leaking during AI photo editing

WEST LAFAYETTE, Ind. — Consumers, businesses and institutions may soon have private, secure and trustworthy generative AI tools for editing and sharing profile photos, ID images and personal pictures ...