The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

How recruitment fraud turned cloud IAM into a $2 billion attack surface

Adversaries weaponized recruitment fraud to steal cloud credentials, pivot through IAM misconfigurations, and reach AI ...
InfoWorld

4 self-contained databases for your apps

SQLite has its place, but it’s not fit for every occasion. Learn how to set up install-free versions of MariaDB, PostgreSQL MongoDB, and Redis for your development needs.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

The Secret Fire TV Stick Hack That Amazon Doesn't Want You To Know About

If you're feeling a bit limited by the app library offered up by your Fire TV Stick, there are a few workarounds that can ...