Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
A newly discovered attack sandbags Apple users into hacking themselves. Here’s what all Mac users need to know.
Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...
Three LangChain flaws enable data theft across LLM apps, affecting millions of deployments, exposing secrets and files.
Threats actors pounced on the vulnerability within hours of its disclosure, demonstrating that organizations have little time ...
The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...
The common assumption among iPhone security experts has been that finding vulnerabilities and developing exploits for iOS was ...
Popular Python package LiteLLM compromised in supply chain attack Malicious updates (v1.82.7, v1.82.8) deployed TeamPCP Cloud Stealer infostealer Attack harvested cloud credentials, Kubernetes secrets ...
After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
Threat actors have demonstrated just how quickly they operate today after exploiting a critical open source vulnerability ...
AI-assisted code speeds development, but introduces vulnerabilities at an alarming rate. Waratek IAST reports flaws ...
Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results