The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
TechJuice

Open Source Malware Surges Nearly 73% in 2025, Cybersecurity Report Shows

Open source malware surged 73% in 2025, with npm as a key target with rising risks in software supply chains and developer environments.
Security Boulevard

Report: Open Source Malware Instances Increased 73% in 2025

A report from ReversingLabs reveals a massive 73% increase in malicious open-source packages in 2025, with over 10,000 ...

Pandas 3.0 brings unified string type and performance optimization

With the PyArrow library installed, pandas 3.0 interprets string columns automatically as the str data type instead of NumPy- ...
The Security Ledger

Technology’s “Upside Down”? Software Supply Chain

Stranger Things concept of the “Upside Down” is a useful way to think about the risks lurking in the software we all rely on.

Veracode Releases Platform Enhancements as Software Supply Chain Attacks Surge

Veracode announced key platform innovations introduced through the second half of 2025, providing preventive control for software supply chains.

ReversingLabs 2026 Software Supply Chain Security Report Identifies 73% Increase in Malicious Open-Source Packages

According to the firm’s latest supply chain security report, there was a 73% increase in detections of malicious open-source packages in 2025. The past year also saw a huge jump in the scope of ...
Eau Claire Leader-Telegram

ReversingLabs 2026 Software Supply Chain Security Report Identifies 73% Increase in Malicious ...

ReversingLabs (RL), the trusted name in file and software security, today released its fourth annual Software Supply Chain Security Report. The 2026 ...