Point Wild Releases Free LiteLLM Vulnerability Scanner Within 24 Hours of Supply Chain Attack

New AI-powered scanner -- who-touched-my-packages -- detects zero-day malicious packages and credential exfiltration in seconds BOSTON, March 26, 2026 /PRNewswire/ -- Point Wild, a leading global ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
CSO Online

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes ...
Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...
Scientific Research Publishing

A Novel ICT-Enabled Decision Support Approach for Surveillance and Control of Mosquito-Borne Diseases ()

Bura, A. and Mung’onya, E. (2026) A Novel ICT-Enabled Decision Support Approach for Surveillance and Control of ...

API proficiency in ChatGPT fetches Rs 30 lakh avg salary in India: Report

Developers with API-level expertise in AI tools such as ChatGPT from OpenAI earn an average salary of Rs 30.3 lakh in India, ...
Liliputing

Motorola plans to ship phones with GrapheneOS (Google-free, security-hardened Android)

GrapheneOS is an open source, Android-based operating system that puts an emphasis on privacy and security features. It’s been stripped of Google apps and services and includes replacements including ...
Bleeping Computer

Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers with cryptocurrency-related tasks. The activity has been ongoing since at ...
CoinDesk

GoPlus Security H2 2025: Executing Through Market Stress as Web3 Losses Hit $4B

In the second half of 2025, GoPlus Security continued to reinforce its position as a foundational infrastructure layer within the Web3 security stack. Rather than signaling a strategic shift, H2 was ...
Reuters

'Moltbook' social media site for AI agents had big security hole, cyber firm Wiz says

WASHINGTON, Feb 2 (Reuters) - A buzzy new social network where artificial intelligence-powered bots appear to swap code and gossip about their human owners had a major flaw that exposed private data ...
VentureBeat

OpenClaw proves agentic AI works. It also proves your security model doesn't. 180,000 developers just made that your problem.

OpenClaw, the open-source AI assistant formerly known as Clawdbot and then Moltbot, crossed 180,000 GitHub stars and drew 2 million visitors in a single week, according to creator Peter Steinberger.