The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
Source: An OpenNews projectOpinion

Journalism lost its culture of sharing

Journalism’s contraction put pressure on even those who survived. “When the rest of the news industry is being squeezed, it ...
InfoWorld

OpenSilver 3.3 runs Blazor components inside XAML apps

New version of the open-source replacement for Microsoft Silverlight also brings support for .NET 10 and C# 14.
Open Access Government

EU launches NEATS tool to track aviation’s non-CO2 climate impact

The European Commission and EUROCONTROL have released an updated version of their digital system designed to assess aviation’s non-CO2 climate effects ...

You can now use GPT-5.2-Codex in more IDEs0 0

OpenAI's powerful GPT-5.2-Codex agentic model is now available in more IDEs through GitHub Copilot for multiple subscription ...

Critical sandbox escape flaw discovered in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.