OpenAI rotates macOS certs after Axios attack hit code-signing workflow

OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
blockchain

List of AI News about Python Pickle serialization

According to DeepLearning.AI (@DeepLearningAI), leveraging ChatGPT to master Python serialization libraries like Pickle helps software developers efficiently serialize and deserialize complex objects ...
The Hacker News

⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More

Active exploits, nation-state campaigns, fresh arrests, and critical CVEs — this week's cybersecurity recap has it all.
blockchain

GitHub Shifts Copilot Data Policy to Train AI on User Code by Default

Starting April 24, GitHub will use Copilot Free, Pro, and Pro+ user interaction data for AI training unless developers opt out. Enterprise users excluded. GitHub announced Wednesday that it will begin ...
Bleeping Computer

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of ...
Phys.org

Python scales host microstructures that block bacterial biofilms—revealing potential for antimicrobial materials

Materials inspired by nature, or biomimetic materials, are nothing new. Scientists have designed water-resistant materials inspired by lotus leaves and rose petals, unsinkable metals based on the ...
Security Boulevard

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were receiving unauthorized patch updates, all containing the same hidden ...
IEEE

Automating Compliance in Clinical Data Pipelines Using Policy-as-Code, NLP, and Blockchain-Inspired Auditing

Abstract: Rapidly growing clinical data, augmented by digitization of health records and multi-site studies, is of tremendous potential but also an emerging regulatory challenge. Maintaining pace with ...