The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
GovInfoSecurity

Telnet Flaw: 800,000 Servers at Risk Amid Active Attacks

Hackers are on the hunt for open telnet ports in servers after discovering that a version of legacy client-server application ...
WinBuzzer

ChatGPT Containers Gain Bash Support and Multi-Language Code

ChatGPT has quietly gained bash support and multi-language capabilities, enabling users to run commands and install packages in containers without official announcements.
TestingCatalog

Manus AI launches Agent Skills open standard for AI workflows

What's new? Manus AI integrates Agent Skills on all platforms with team plan early access; Agent Skills offers modular ...
Le Lézard

Veracode Releases Platform Enhancements as Software Supply Chain Attacks Surge

Veracode, the global leader in application risk management, today announced significant platform innovations introduced through the second half of 2025. Headlining the release is Package Firewall, an ...

ReversingLabs 2026 Software Supply Chain Security Report Identifies 73% Increase in Malicious Open-Source Packages

According to the firm’s latest supply chain security report, there was a 73% increase in detections of malicious open-source packages in 2025. The past year also saw a huge jump in the scope of ...
Tobacco Control

Evaluating policy compliance among leading tobacco brands on Instagram

Background Instagram hosts pro-tobacco content that may reach youth despite existing US federal and platform-specific ...