SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

USPS to test new method of counting Americans in 2030 census

The pilot will test whether postal carriers’ local knowledge can improve in-person follow-ups and reduce costs.

A simple coding mistake is exposing API keys across thousands of websites

A large-scale study has revealed that websites are unintentionally exposing API keys tied to services like AWS, Stripe, and OpenAI, with most leaks traced back to publicly accessible JavaScript files.
Marketplace

How does mail get to the Grand Canyon?

A mule train traverses 9 miles to get to the Havasupai Tribe. The Postal Service has stayed true to its original mission of ...
FOX 5 DC

USPS mail truck driver charged in deadly 2025 crash that killed pedestrian in Maryland

A Silver Spring man who was driving a USPS mail truck is now facing charges months after a deadly pedestrian crash in ...
The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.