TeamPCP strikes again, with almost identical code to LiteLLM.
Over 1,700 malicious packages since Jan 2025 fuel cross-ecosystem supply chain attacks, enabling espionage and financial ...
LiteLLM 1.82.7–1.82.8 supply chain attack exposed 33,185 secrets across 6,943 machines, leaving 3,760 valid credentials ...
Zoho founder Sridhar Vembu advises software engineers to prioritize deep domain expertise over just programming skills to succeed in the AI era. While AI accelerates prototypes, he emphasizes that ...
The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.
The threat group's shift to speedy attacks on AWS, Azure, and SaaS instances shows organizations need to respond quickly to compromised credentials.
Meta has paused work with Mercor after a LiteLLM-linked security breach, raising new concerns about AI vendor risk and ...
FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...
Meta pauses Mercor partnership after a major data breach raises concerns over exposure of sensitive AI training data.
An attacker purchased 30+ WordPress plugins on Flippa, planted backdoors that lay dormant for eight months, then activated ...
Malicious open source packages reach 1.346 million as attackers abuse trusted software, release paths, and developer ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results