Popular LiteLLM PyPI package compromised in TeamPCP supply chain attack

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

LiteLLM loses game of Trivy pursuit, gets compromised

Two versions of LiteLLM, an open source interface for accessing multiple large language models, have been removed from the ...
The Hacker News

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...
KrASIA

What is OpenClaw? 8 things to know as the AI agent draws hype, confusion, and caution

The open-source tool promises hands-free automation, but users may find it costly, complex, and less practical than expected.
Dark Reading

Attackers Hide Infostealer in Copyright Infringement Notices

A phishing campaign targeting healthcare, government, hospitality, and education sectors uses several evasion techniques to ...
Med Device Online

Generative AI Can Write The Code, But Who Builds In The Quality?

Code democratization demands a return to the fundamentals of quality in pharmaceutical and regulated environments.
Security Boulevard

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were ...
Security Boulevard

That “job brief” on Google Forms could infect your device

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain.
Infosecurity Magazine

Hackers Exploit Critical Langflow Bug in Just 20 Hours

Threat actors have demonstrated just how quickly they operate today after exploiting a critical open source vulnerability ...
BeInCrypto

Traders Use Claude AI to Build Polymarket Bots — Some Claim Millions in Profits

Traders are using Claude AI to build automated Polymarket trading bots that scan news, detect mispriced probabilities, and ...
Infosecurity Magazine

What CISOs Should Know (And Do) About OpenClaw

Infosecurity spoke to several experts to explore what CISOs should do to contain the viral AI agent tool’s security vulnerabilities ...

Read This Before Nvidia GTC 2026: Agentic AI And LPU

Nvidia CEO Jensen Huang hints at agentic AI at GTC; a Groq-based LPU could boost inference, defend its moat, and more. Click ...