The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
MUO on MSN

I don’t need Perplexity anymore because my local LLM does it better

Perplexity was great—until my local LLM made it feel unnecessary ...
WinBuzzer

ChatGPT Containers Gain Bash Support and Multi-Language Code

ChatGPT has quietly gained bash support and multi-language capabilities, enabling users to run commands and install packages in containers without official announcements.
GovInfoSecurity

Telnet Flaw: 800,000 Servers at Risk Amid Active Attacks

Hackers are on the hunt for open telnet ports in servers after discovering that a version of legacy client-server application ...
CCN on MSN

Binance logins among 149 million credentials exposed in infostealer malware data dump — here’s what you should know

This was not a single company breach, the credentials were harvested from millions of infected user devices using infostealer malware. Binance appeared in the dataset ...

ReversingLabs 2026 Software Supply Chain Security Report Identifies 73% Increase in Malicious Open-Source Packages

According to the firm’s latest supply chain security report, there was a 73% increase in detections of malicious open-source packages in 2025. The past year also saw a huge jump in the scope of ...