SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...
TechAnnouncer

Mastering LeetCode Python Problems: A Comprehensive Guide

So, you want to get better at those tricky LeetCode Python problems, huh? It’s a common goal, especially if you’re aiming for ...
New York Magazine

The New Epstein List: Celebrities Named; Predators Redacted

What do Elvis Presley, Alexandria Ocasio-Cortez, Donald Trump, Jill Biden, Robert F. Kennedy Jr., and Marilyn Monroe have in common? This reads like one of those old bubble-gum-wrapper riddles, but it ...
FierceBiotech

CSL signs on to $328M research collab with option for Memo's immunoglobulin antibody tech

CSL has gotten the Memo about the value of recombinant polyclonal immunoglobulin (IgG) antibodies. The company is signing on to a collaboration and option agreement with Memo Therapeutics that could ...
NBC News

Using AI for advice or other personal reasons is linked to depression and anxiety

People who interact with chatbots for emotional support or other personal reasons are likelier to report symptoms of depression or anxiety, a new study finds. The researchers from Mass General Brigham ...
Bleeping Computer

New China-linked hackers breach telcos using edge device exploits

A sophisticated threat actor that uses Linux-based malware to target telecommunications providers has recently broadened its operations to include organizations in Southeastern Europe. Tracked ...
The Hacker News

China-Linked UAT-7290 Targets Telecoms with Linux Malware and ORB Nodes

A China-nexus threat actor known as UAT-7290 has been attributed to espionage-focused intrusions against entities in South Asia and Southeastern Europe. The activity cluster, which has been active ...
Falcons Wire

How is STACK Infrastructure linked to Caddo, Bossier data center deals?

A global data center developer is linked to large land purchases in Caddo and Bossier parishes. Public records connect STACK Infrastructure to the acquisitions through an LLC sharing its corporate ...
SecurityWeek

Chinese APT Mustang Panda Caught Using Kernel-Mode Rootkit

The threat actor uses a signed driver file containing two user-mode shellcodes to execute its ToneShell backdoor. The Chinese espionage-focused APT Mustang Panda has been using a kernel-mode rootkit ...