New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...

GitHub disables Microsoft repos pushing password-stealing malware

Microsoft removed 73 repositories across its Azure, microsoft, Azure-Samples, and MicrosoftDocs organizations on GitHub, ...
https//fedtechmagazine.com

How the Air Force’s P1 Uses Platform Engineering to Support DevSecOps

Adam Stone writes on technology trends from Annapolis, Md., with a focus on government IT, military and first-responder technologies. Software factories have proved to be a speedy way to create and ...
GitHub

dmatiason09/cloudtrail-threat-detector

A pure-stdlib Python CLI that ingests CloudTrail JSON logs and emits markdown alerts when it sees attacker behavior. No AWS account required to develop or test — bundled samples simulate every ...
GitHub

lenucksi/aur-malware-check

Detection and analysis tools for the atomic-lockfile supply-chain attack on the Arch User Repository (AUR). This is a collection of all the scattered resources, especially the ones in the detection ...