python

According to Slow Fog's disclosure, a new variant of Shai-Hulud Hades has been found attacking PyPI. The malicious package drops a .pth file that executes automatically when Python starts, and checks if Bun is installed locally; if not installed, it downloads the official Bun binary from GitHub Releases, and then executes a multi-layer obfuscated JavaScript payload to steal credentials from GitHub, npm, AWS, and cloud services.Slow Fog stated that this variant uses the same RSA public key and infrastructure as previous Shai-Hulud attacks, and has capabilities such as encrypted exfiltration, persistence, CI/CD injection, and GitHub Actions injection.

ChainCatcher message, according to the popularity index data from the Web3 asset data platform RootData, as of January 22 at 10:00, in the Top 50 ranking of skyrocketing projects, SwarmNode's ranking surged by 439 places, with its Token SNAI experiencing a 24-hour increase of 52.64%.SwarmNode enables users to run Python agents in the cloud without managing servers. Agents can be scheduled to execute at specific times or can be manually executed via UI, REST API, and Python SDK. During execution, each agent can access persistent and dedicated storage available for storing and retrieving data.It is reported that RootData has launched the first "Web3 Hot Projects Ranking." This popularity ranking helps users capture the real pulse of attention and improve the accuracy of investment decisions through 4.3 million real user behavior data. The ranking is calculated in real-time based on weighted factors such as search frequency by platform users, project click rates, user votes, and the popularity and influence on platform X.

ChainCatcher news, according to RootData data, the SwarmNode token (SNAI) has increased by 83.02% in the last 24 hours, currently priced at $0.076.According to the Web3 asset data platform RootData, SwarmNode allows users to run Python agents in the cloud without managing servers. Agents can be scheduled to execute at specific times or can be manually executed through the UI, REST API, and Python SDK. During execution, each agent has access to persistent and dedicated storage available for storing and retrieving data.

ChainCatcher news, researchers from the cybersecurity company Checkmarx have issued a warning about a dangerous malware uploaded to the Python Package Index (PyPI) that steals private keys. According to the company, this malware was automatically uploaded by suspicious users through several different packages, designed to mimic decoding applications of popular wallets and other mainstream industry products like MetaMask, Atomic, TronLink, and Ronin.The malware is cleverly embedded in various parts of the packages. Since this malware appears to be harmless code, it is essentially undetectable. However, upon closer inspection, once an unsuspecting user calls specific functions embedded in the package, certain parts of the data will allow hackers to control cryptocurrency wallets and transfer funds.

ChainCatcher message, the Ethereum Foundation officially announced the launch of the Ethereum Execution Layer Specification (EELS) after more than a year of development. EELS is a Python reference implementation of the core components of the Ethereum execution client, focusing on readability and clarity, making it more programmer-friendly and keeping in sync with the post-merge forks. EELS provides a complete snapshot of the protocol at each fork, making it more convenient to execute compared to the "just change" specifications of EIPs and the production clients with "unified code paths appearing in multiple forks." The Ethereum Foundation hopes that EELS will become the default way to specify core EIPs.

ChainCatcher news, the Ethereum Layer 2 network ZkSync announced on Twitter that it has integrated Java, Go, and Python programming languages into its Software Development Kit (SDK), allowing developers to access and use their preferred coding languages, enabling new use cases such as "mobile or hardware-specific applications." The team stated that they will continue to expand to other programming languages in the future.ChainCatcher previously reported that on October 31, the first phase of the zkSync 2.0 mainnet, Baby Alpha, has been launched, with the mainnet expected to be open to all users in early 2023. (source link)