Python packages caught using DLL sideloading to bypass security

ReversingLabs researchers have uncovered Python packages using DLL sideloading to bypass security tools.

On 10 January 2024, Karlo Zanki, a reverse engineer at ReversingLabs, stumbled upon two suspicious packages on the Python Package Index (PyPI). These packages – named NP6HelperHttptest and NP6HelperHttper – were found to be utilising DLL sideloading, a known technique used by malicious actors to execute code discreetly and evade detection from security tools.

This...

Google releases Android 15 developer preview

Google has unveiled the initial developer preview of Android 15, showcasing a range of new features aimed at enhancing user privacy, refining advertising experiences, and improving overall device performance.

Dave Burke, Google's Vice President of Engineering, says a core focus was on advancing user privacy while maintaining personalised advertising capabilities through the latest version of Privacy Sandbox on Android. This addition aims to strike a balance between protecting user...

Apple is killing web apps in the EU

Apple is ending support for progressive web apps (PWAs) for iPhone users within the EU, stirring concern among developers and users alike. This decision comes as a definitive blow to the accessibility and functionality of web-based applications on Apple devices.

The move to discontinue web app support has been apparent in each iteration of the iOS 17.4 beta, with users experiencing persistent issues. However, Apple has now clarified that this is deliberate.

In an update...

GitHub invites open-source AI developers to apply for Accelerator

GitHub has announced applications are now open for the next cohort of its Accelerator program, which provides funding, mentoring, and other benefits for early-stage open-source projects. There is a particular focus this year on developers building AI solutions.

Applications will be accepted on a rolling basis until 5 March 2024. Ten projects will be selected to participate in the 10-week program beginning 22 April 2024.

The 2024 GitHub Accelerator cohort focuses on the...

MongoDB launches Atlas Stream Processing preview

MongoDB has announced the public preview launch of Atlas Stream Processing, allowing any developer on Atlas to access the new stream processing capability. 

The introduction of Atlas Stream Processing aims to revolutionise the handling of high-velocity event data, providing developers with enhanced agility and efficiency in managing data streams.

Unveiled at .local NYC 2023, Atlas Stream Processing promises to redefine the landscape of stream data aggregation and...

European iOS developers can begin testing alternative app stores 

Apple this week began implementing its controversial plans to comply with the EU’s Digital Markets Act (DMA), allowing developers to now submit alternative app stores and external apps via App Store Connect.

This development comes amid Apple's efforts to meet the DMA requirements by March 2024. With the deadline looming, Apple is taking proactive steps to enable developers to test their apps and marketplaces ahead of time.

In an update on its developer website, Apple...

Deazy acquires Geektastic to flaunt talented developers

Bristol-based Deazy – a tech startup connecting enterprises with global development talent – has acquired Geektastic, a provider of customisable, expert-reviewed technical skills assessments. The acquisition allows Deazy to demonstrate the quality of its developer community to potential clients.

Founded in 2019, Deazy partners with companies like the RAC and Popeyes to help accelerate their digital delivery by matching them with top developers from its network of 85 partners...

Evinced’s accessibility testing solutions triple in adoption 

Evinced, a provider of web and mobile accessibility solutions, saw its customer base triple in 2023 on the back of new prevention-focused tools like Unit Tester and Design Assistant. These innovations allow developers and designers to automatically catch accessibility issues long before release, marking a shift for the industry toward prevention versus post-hoc fixes.

The company’s impressive expansion has cemented its status as a top accessibility vendor, counting 6 of the 10...

OpenText unveils next-gen cybersecurity auditing technology

OpenText has unveiled the second generation of its advanced cybersecurity auditing technology called Fortify Audit Assistant—aiming to help developers build more secure software amid rising threats and complexity in multi-cloud environments.

The key upgrade is the use of predictive analytics and machine learning to emulate human security auditors. By learning from 10 years of human expert data, the new Fortify Audit Assistant significantly improves accuracy and reduces false...

Unity launches XR app building tools for Apple’s Vision Pro

Unity has officially launched tools for visionOS, Apple's new operating system for its Vision Pro spatial computing headset. The support will allow developers to use Unity's development tools and workflow to build immersive experiences for the Vision Pro.

The announcement comes ahead of the Vision Pro headset's launch on 2 February 2024. Unity's templates, samples and resources will help developers tap into the headset's capabilities using Unity's PolySpatial technology to...