Dark Reading

TeamPCP Breaches Cloud, SaaS Instances With Stolen Credentials

The threat group's shift to speedy attacks on AWS, Azure, and SaaS instances shows organizations need to respond quickly to ...
Infosecurity Magazine

TeamPCP Explores Ways to Exploit Stolen Supply Chain Secrets

TeamPCP is exploring ways to monetize the secrets harvested during supply chain attacks, with identified ties to the Lapsus$ ...

Major compromise of the telnyx PyPI library could put millions of users at risk

TeamPCP strikes again, with almost identical code to LiteLLM.

CNCF's Dapr Agents Tackles The Problem Most AI Frameworks Ignore

CNCF launches Dapr Agents v1.0 at KubeCon EU, prioritizing crash recovery and durability over intelligence. Zeiss validates ...
OfficeChai

LiteLLM Attack: How a Hacked Security Tool Became a Master Key to Thousands of AI Developer ...

On the morning of March 24, 2026, tens of thousands of software developers working on AI applications were unknowingly exposed to malware.
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
Cybernews

Critical Python supply chain compromise: how library used by millions of AI developers got ...

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...

OpenAI’s Astral deal reveals hidden funding rounds, investor windfall: AI researcher ...

Independent researcher Simon Willison raises questions about hidden Series A and B rounds, investor windfalls, and whether a ...
IEEE

GRFuzz: A Deep Reinforcement Learning Approach to Python Library Fuzzing with GRPO

In the digital realm, ensuring the security and reliability of systems and software is of paramount importance. Fuzzing has emerged as one of the most effective testing techniques for uncovering ...
IEEE

An Empirical Study on Python Library Dependency and Conflict Issues

Abstract: With the rapid development of open-source communities, code reuse in Python projects is increasingly common. Developers heavily rely on third-party libraries from the Python central ...
PC Magazine

My Spotify Library Was Boring, So I Asked ChatGPT to Create New Playlists

My Spotify Library Was Boring, So I Asked ChatGPT to Create New Playlists With its new third-party app integration feature, OpenAI’s AI chatbot can suggest music from Apple Music and Spotify, then ...