TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...
Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.
Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
JFrog reports Telnyx PyPI package was poisoned with malware by TeamPCP Malicious update delivered hidden .wav payload that ...
A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...
I keep reaching for my phone, and it’s not for scrolling.
Updated: Hijacked maintainer account let attackers slip cross-platform trojan into 100M-downloads-a-week Axios ...
North Korean hackers used an updated version of a known backdoor to target a popular npm package.
The new family of AI models can run on a smartphone, a Raspberry Pi, or a data centre, and is free to use commercially.
UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results