The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

CISA: New Langflow flaw actively exploited to hijack AI workflows

The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...

How I used Gemini to replace YouTube's missing comment alerts - in under an hour

How I used Gemini to replace YouTube's missing comment alerts - in under an hour ...

Ready for a Linux laptop? I recommend a Tuxedo to beginners and pro users alike

Ready for a Linux laptop? I recommend a Tuxedo to beginners and pro users alike ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

[Ends Today] Between You and AI eBook (worth $28) free to download

Claim your complimentary copy (worth $28) of "Between You and AI: Unlock the Power of Human Skills to Thrive in an AI-Driven ...

TeamPCP deploys Iran-targeted wiper in Kubernetes attacks

The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects ...
Security Boulevard

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were ...

[Free eBook] Linux Shell Scripting for Hackers (worth $35.99)[Free eBook] Linux Shell Scripting for Hackers (worth $35.99)0 0

If you're a cybersecurity enthusiast or ethical hacker who wants to learn more about building hacking tools, this book is for ...