The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
Computer Weekly

Broken decryptor leaves Sicarii ransomware victims adrift

A coding error in an emergent strain of ransomware leaves victims unable to recover their data, even if they cooperate with ...
Microsoft

Case study: Securing AI application supply chains

This case study examines how vulnerabilities in AI frameworks and orchestration layers can introduce supply chain risk. Using ...