Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Updated on January 28, 2026

Cybersecurity researchers have discovered two malicious packages in the Python Package Index (PyPI) repository that masquerade as spellcheckers but contain functionality to deliver a remote access trojan (RAT).
The packages, named spellcheckerpy and spellcheckpy, are no longer available for download, but not before they were collectively downloaded a little over 1,000 times.
“Hidden inside the…

Read the rest of the story at Read More

Source: The Hacker News

December 16, 2024 Uncategorized

Data Governance in DevOps: Ensuring Comp...

December 7, 2024 Uncategorized

Hackers Using Fake Video Conferencing Ap...

March 17, 2025 Uncategorized

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Related posts

Data Governance in DevOps: Ensuring Comp...

Hackers Using Fake Video Conferencing Ap...

GitHub Action Compromise Puts CI/CD Secr...

Leave a Comment Cancel reply

Recent News

Eclipse Foundation Mandates Pre-Publish Security Checks for Open VSX Extensions

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

Docker Fixes Critical Ask Gordon AI Flaw Allowing Code Execution via Image Metadata

[Webinar] The Smarter SOC Blueprint: Learn What to Build, Buy, and Automate

Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package

When Cloud Outages Ripple Across the Internet

APT28 Uses Microsoft Office CVE-2026-21509 in Espionage-Focused Malware Attacks

Mozilla Adds One-Click Option to Disable Generative AI Features in Firefox

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users