Cybersecurity researchers have discovered two malicious packages in the Python Package Index (PyPI) repository that masquerade as spellcheckers but contain functionality to deliver a remote access trojan (RAT).
The packages, named spellcheckerpy and spellcheckpy, are no longer available on PyPI, but not before they were collectively downloaded a little over 1,000 times.
"Hidden inside the Basque
bsky.app
Hacker & Security News on Bluesky @hacker.at.thenote.app
thehackernews.com
thehackernews.com
RSS Hunter
2026-01-28