The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
Infosecurity Magazine

TeamPCP Targets Telnyx Package in Latest PyPI Software Supply Chain Attack

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...

Major Security Breach Of Critical AI Dependency Exposes Cloud Secrets

A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...
TechAnnouncer

Master Python Coding Online: Your Guide to Interactive Learning and Development

Thinking about learning Python coding online? It’s a solid choice. Python is pretty straightforward to pick up, ...
eWeek

ChatGPT’s New File Library Changes Deletion Rules for Paid Users

OpenAI’s new ChatGPT file library makes saved files easier to reuse, but deleting a chat no longer deletes the files inside ...

Spotify seeks $300M from Anna’s Archive, which ignores all court proceedings

Spotify and major record labels are seeking a $322 million default judgment from Anna’s Archive, which hasn’t responded to ...
Unite.AI

A 1970s Vibe to Energy-Conserving AI Monitoring

New research shows most video AI does not need color at all, switching it on only at key moments and cutting data use by over 90% with little loss in accuracy. Remote streaming cameras and other ...
CNET

OpenAI Gives Users a Long-Term Storage Option With ChatGPT Library

ChatGPT users can now store, browse and retrieve the files they upload and create with the AI tool, OpenAI announced this ...

OpenAI’s New ChatGPT Feature Makes It Easier to Reference Uploaded Files

OpenAI’s ChatGPT now saves uploaded files in a Library, allowing users to reuse them across multiple conversations without re ...

Supply chain attack on LiteLLM: Affected parties should change credentials

An attack on the open-source library for connecting to LLMs has apparently occurred, allowing two compromised packages to ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
Cybernews

Critical Python supply chain compromise: how library used by millions of AI developers got infected with malware

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...