New Infinity Stealer malware grabs macOS data via ClickFix lures

A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler.
SecurityWeek

Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs

A new ClickFix attack that leverages a Nuitka loader targets macOS users with the Python-based Infiniti Stealer malware.
The New York Times

In a Clothing Pickle? There’s an App for That

Pickle, a new peer-to-peer apparel-rental app, helps users stay on trend without having to go into debt or rely on climate-unfriendly fast fashion. By Kasia Pilat When Halley Kate McGookin, a social ...
GitHub

Production-grade static analysis for detecting malicious Python pickle files. Built to protect ML pipelines from pickle-based attacks.

Python's pickle format is a known security risk - arbitrary code execution during deserialization. As ML models are increasingly shared via pickle-based formats (.pt, .pth, .pkl), attackers exploit ...
Forbes

Direct File Is Gone. Here’s How You Can Still File Your Taxes For Free

The IRS shut down its direct filing program for 2026, but Free File, Fillable Forms, MilTax, and some private tools remain—if you know where to look. Here’s how to navigate the free options still ...
bitnewsbot

Three Critical Flaws Found in Picklescan Risk PyTorch Model Security

In December 2025, three significant security vulnerabilities were disclosed in Picklescan, a security scanner tool that analyzes Python pickle files to detect unsafe imports or function calls before ...
USA Today

Jimmy John's brings back its puckering pickle sandwich for a limited time

Pickle fans assemble! Jimmy John's is promising to go "all in on your briny obsession" by launching a pickle-themed menu, including their viral Picklewich. “Jimmy John’s fans are freaks for our Jimmy ...
GitHub

A python queue implementation using pickle serialization with file locking for persistence across processes.

git clone https://github.com/seaspaceman/pickle-queue.git cd pickle-queue pip install -e . item (Any): The item to add to the queue. Can be any pickle-serializable ...
Food & Wine

We Tasted 12 Dill Pickles — and This Supermarket Brand Came Out on Top

Amelia Schwartz is a Brooklyn-based writer and editor who has been covering food, beverage, and culture for over seven years. She is currently an editor at Food & Wine magazine, focusing on trends and ...
CSOonline

Poisoned models in fake Alibaba SDKs show challenges of securing AI supply chains

Fake Alibaba Labs AI SDKs hosted on PyPI included PyTorch models with infostealer code inside. With support for detecting malicious code inside ML models lacking, expect the technique to spread.
Infosecurity-magazine.com

Malicious Machine Learning Model Attack Discovered on PyPI

A new campaign exploiting machine learning (ML) models via the Python Package Index (PyPI) has been observed by cybersecurity researchers. ReversingLabs said threat actors are using the Pickle file ...