Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...
The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
Wall Street Journal

Justice Department Probes Iran’s Use of Binance to Evade Sanctions

The probe follows the crypto exchange’s dismantling of an internal investigation into more than $1 billion that flowed through the platform to a network funding ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
CBS News

Trump administration making heavy preparations for potential use of ground troops in Iran

Washington — Pentagon officials have made detailed preparations for deploying U.S. ground forces into Iran, multiple sources briefed on the discussions told CBS News. Senior military commanders have ...
Make Tech Easier

ShellGPT: Turn Your Words into Terminal Commands

ShellGPT makes the terminal user-friendly, saving time by generating commands, automating scripts, and guiding me through tasks.
heise online

Integration into Codex: OpenAI acquires startup Astral

ChatGPT maker OpenAI is acquiring Astral, a startup that develops and integrates established open-source programs for Python into the Codex platform. Both companies announced this on Thursday. OpenAI ...
Hackaday

This Week In Security: Linux Flaws, Python Ownage, And A Botnet Shutdown

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...