A Python package presented as a privacy-first shortcut to AI models has been unmasked as a supply-chain threat that quietly captures user prompts, leans on a private university service without ...

Meta pauses Mercor partnership after a major data breach raises concerns over exposure of sensitive AI training data.

AI startup Mercor has confirmed a security breach amid claims by Lapsus$ of stealing 4TB of data, including source code and ...

Claw-code, a clean slate rewrite of leaked Claude Code, is now the fastest growing GitHub repository, reaching 100K stars in one day. Anthropic is trying to contain the genie released from the bottle, ...

TeamPCP is exploring ways to monetize the secrets harvested during supply chain attacks, with identified ties to the Lapsus$ ...

TeamPCP strikes again, with almost identical code to LiteLLM.

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. AI and data interface, representing system warning alert, cybersecurity threat, data error, ...

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of ...

Abstract: This work examines packages for FPGA development hosted on the PyPI repository and their role in the FPGA design flow. Python is seen as a way to simplify FPGA development, an alternative to ...

One of the largest online repositories of retro video games is shutting down, which is a big blow to preservation. In the past, I’ve written about the importance of video game preservation, which ...

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...