ZiChatBot malware spread via 3 PyPI packages in July 2025 uses Zulip APIs as C2, enabling stealthy attacks across systems ...

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive developer data and cryptocurrency wallets. The dangerous release is 0.23.3, ...

Microsoft Threat Intelligence said attackers placed malicious code inside a Mistral AI download distributed through a Python ...

Hundreds of packages across npm and PyPI have been compromised in a new Shai-Hulud supply-chain campaign delivering ...

The 2023 Corruption Perceptions Index (CPI) shows that corruption is thriving across the world. The CPI ranks 180 countries and territories around the globe by their perceived levels of public sector ...

The 2022 Corruption Perceptions Index (CPI) shows that most countries are failing to stop corruption. The CPI ranks 180 countries and territories around the world by their perceived levels of public ...

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a vulnerability in the developers’ account workflow that gave access to its signing keys ...

A widely used PyPI package was recently compromised through a malicious update The attack leveraged a GitHub Actions workflow to push infostealer code into a release Maintainers quickly issued a clean ...

Loan to cover two-thirds of Ukraine's needs for next two years Throws Ukraine a lifeline after Hungary had blocked the loan Zelenskiy to attend EU leaders' summit in Cyprus No formal decisions ...

Holds the entire stock market, minus the S&P 500. Our research team assigns Gold ratings to strategies that they have the most conviction will outperform their Morningstar Category average over a ...

Want to join a community of passionate, engaged supporters who make significant investments to support OPB’s work? Join an OPB Giving Circle. Leave a Legacy Help OPB thrive as an essential public ...