The cybercrime crew linked to the Trivy supply-chain attack has struck again, this time pushing malicious Telnyx package versions to PyPI in an effort to plant credential-stealing malware on ...
Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
OpenAI revoked its macOS signing certificate after a malicious Axios dependency incident on March 31, 2026, preventing ...
TeamPCP strikes again, with almost identical code to LiteLLM.
Nvidia today announced the world’s first family of open-source quantum AI models, named NVIDIA Ising. Instead of competing with the chatbots on your phone, these models are designed to act as the ...
The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.
FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...
TeamPCP is exploring ways to monetize the secrets harvested during supply chain attacks, with identified ties to the Lapsus$ ...
Meta pauses Mercor partnership after a major data breach raises concerns over exposure of sensitive AI training data.
The IT security company NetKnights has released version 3.13 of its multi-factor authentication software, privacyIDEA ...
Meta has indefinitely paused work with $10B AI data startup Mercor after a LiteLLM supply chain attack exposed training ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results