The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
GitHub

Simple zero-dependency Python script for downloading and updating CurseForge modpacks

This program allows you to download and update existing mod packs (ex. for Minecraft) Replace https://www.curseforge.com/api/v1/mods/123456/files/1234567/download ...
GitHub

l-urk/CVE-2024-6387

🔒 CVE-2024-6387 regreSSHion remote code execution vulnerability exploit script usage: regreSSHion.py [-h] -i IP -p PORT [-t] [-c] [-d] [-r] [-x] [-y] [-z] 🔒 CVE ...