TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver credential-stealing malware hidden inside a WAV file. Earlier today, the ...

TeamPCP has again expanded its supply chain attacks on open-source repositories by targeting Telnyx, according to security researchers. The cyber threat group recently rose to notoriety by uploading ...

OpenAI revoked its macOS signing certificate after a malicious Axios dependency incident on March 31, 2026, preventing ...

OpenAI has launched an upgraded Codex, aiming to rival Anthropic's Claude Code as a leading AI coding tool. The new Codex can now operate autonomously in the background, managing tasks like app ...

TeamPCP strikes again, with almost identical code to LiteLLM.

The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.

When Nandakishore Leburu was building LLM applications at LinkedIn, he learned that the models weren't the problem. The ...

An attacker purchased 30+ WordPress plugins on Flippa, planted backdoors that lay dormant for eight months, then activated ...

The IT security company NetKnights has released version 3.13 of its multi-factor authentication software, privacyIDEA ...

FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...

AI hiring startup Mercor confirmed it was "one of thousands of companies" affected by the LiteLLM supply-chain attack as the fallout from the Trivy compromise continues to spread. "We recently ...