The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
Dark Reading

AsyncRAT Malware Infests Orgs via Python & Cloudflare

The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade detection and gain trust.
The New York Times

‘You couldn’t write this script’ – the footballers whose stories would make for the best movies

How many times have you watched football and heard someone say, “You couldn’t write this script”, or, “If this was a film you wouldn’t believe that ending.” The answer is, probably too many. Every ...