The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
GovInfoSecurity

Telnet Flaw: 800,000 Servers at Risk Amid Active Attacks

Hackers are on the hunt for open telnet ports in servers after discovering that a version of legacy client-server application ...
WinBuzzer

ChatGPT Containers Gain Bash Support and Multi-Language Code

ChatGPT has quietly gained bash support and multi-language capabilities, enabling users to run commands and install packages in containers without official announcements.
TestingCatalog

Manus AI launches Agent Skills open standard for AI workflows

What's new? Manus AI integrates Agent Skills on all platforms with team plan early access; Agent Skills offers modular ...
Cybernews

North Korea is turning open-source projects into malware traps

North Korea is doubling down on a familiar playbook by weaponizing trust in open-source software and developer workflows. The ...
Source: An OpenNews projectOpinion

Journalism lost its culture of sharing

Journalism’s contraction put pressure on even those who survived. “When the rest of the news industry is being squeezed, it ...

ReversingLabs 2026 Software Supply Chain Security Report Identifies 73% Increase in Malicious Open-Source Packages

According to the firm’s latest supply chain security report, there was a 73% increase in detections of malicious open-source packages in 2025. The past year also saw a huge jump in the scope of ...
Tobacco Control

Evaluating policy compliance among leading tobacco brands on Instagram

Background Instagram hosts pro-tobacco content that may reach youth despite existing US federal and platform-specific ...