The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
Infosecurity Magazine

TeamPCP Targets Telnyx Package in Latest PyPI Software Supply Chain Attack

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...

Major Security Breach Of Critical AI Dependency Exposes Cloud Secrets

A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...
DataBreachToday

LiteLLM Hit in Cascading Supply-Chain Attack

Threat group TeamPCP exploited credentials stolen in the Trivy breach to push malicious versions of LiteLLM to PyPI, exposing ...

'Each vulnerability exposes a different class of enterprise data': LangChain framework hit by several worrying security issues — here's what we know

LangChain helps developers build apps using large language models (LLM), by connecting AI models to various data sources and ...

CISA: New Langflow flaw actively exploited to hijack AI workflows

The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...

Uh Oh—New ‘Hack Yourself’ Apple Mac Attack Can Steal Your Passwords

A newly discovered attack sandbags Apple users into hacking themselves. Here’s what all Mac users need to know.
TechAnnouncer

Master Python Coding Online: Your Guide to Interactive Learning and Development

Thinking about learning Python coding online? It’s a solid choice. Python is pretty straightforward to pick up, ...

Tech stocks today: Big Tech stocks sell off, Anthropic considers IPO as soon as Q4

Tech stocks continued to be pressured on Friday after a sell-off in social media stocks and chip stocks sent the tech-heavy ...

Tech stocks today: Apple plans to let Siri access other AI services, Big Tech stocks sell off

Tech stocks sank on Thursday amid uncertainty over US-Iran talks and as a landmark trial verdict opened social media ...
Techzine Europe

Langflow RCE flaw exploited within hours, CISA warns

The US cybersecurity agency CISA has flagged a critical code injection flaw in Langflow, the open-source visual framework widely used to build AI agent ...

I found 7 open source apps so good I'd actually pay for them

But it has hidden layers I want visibility into, especially as awareness of tracking and data collection increases. Likewise, ...