The TeamPCP hacking group has been using credentials stolen in the recent OSS campaign to enumerate and compromise AWS ...

AtlasCross RAT spreads via 11 fake domains registered October 27, 2025, enabling encrypted C2 control and persistence.

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

The digital travel platform has set its sights on becoming an AI-powered travel companion as it changes how it builds ...

Reimaging professional and educational practices for an AI-augmented future.

Russia, Iran, Israel, Ukraine, and the US have all exploited IP-connected cameras to 'see' monitor adversaries, and private ...

A newly discovered attack sandbags Apple users into hacking themselves. Here’s what all Mac users need to know.

A newly discovered attack sandbags Apple users into hacking themselves. Here’s what all Mac users need to know.

Overview Recently, NSFOCUS Technology CERT detected that the GitHub community disclosed that there was a credential stealing program in the new version of LiteLLM. Analysis confirmed that it had ...

Threat group TeamPCP exploited credentials stolen in the Trivy breach to push malicious versions of LiteLLM to PyPI, exposing ...

Third-party resellers and brokers foil transparency efforts and allow spyware to spread despite government restrictions, a ...

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...