Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...
Isn’t there some claim events come in threes? After the extremely rare leak of the iOS Coruna exploit chain recently, now we have details from Google on a second significant exploit in the ...
Threat group TeamPCP exploited credentials stolen in the Trivy breach to push malicious versions of LiteLLM to PyPI, exposing ...
The 2025 attacks demonstrated that credential theft has matured into an industry. In 2026, will enterprise defenses mature to ...
GlassWorm is evolving. Security researchers say the malware, which infiltrates code repositories with malicious extensions, can now deploy a RAT, is targeting MCP servers, and has a new way of moving ...
Learn how to detect compromise, assess your exposure to the LiteLLM supply chain attack, and use GitGuardian to orchestrate ...
Microsoft PowerToys adds a macOS-style Dock to Windows 11. Command Palette Dock brings faster app access, system stats, and ...
Independent security researchers recently completed an audit of the ClawHub skill marketplace — the primary distribution ...
When WP Engine acquired WPackagist on March 12, the WordPress developer community faced a familiar question: what happens ...
LiteLLM Attack: How a Hacked Security Tool Became a Master Key to Thousands of AI Developer Machines
On the morning of March 24, 2026, tens of thousands of software developers working on AI applications were unknowingly exposed to malware.
Kali Linux 2026.1, the first release of the year, is now available for download, featuring 8 new tools, a theme refresh, and ...
After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results