Cybernews

Critical compromise: Axios NPM library with 100M weekly downloads is delivering malware

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...
The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
eWeek

ChatGPT’s New File Library Changes Deletion Rules for Paid Users

OpenAI’s new ChatGPT file library makes saved files easier to reuse, but deleting a chat no longer deletes the files inside ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
Cybernews

Critical Python supply chain compromise: how library used by millions of AI developers got infected with malware

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...
WKRG

Tennessee library director refuses to remove 190 children’s books

RUTHERFORD COUNTY, Tenn. (WKRN) — A dispute over children’s books in Tennessee is escalating after a library system’s director refused to follow a board-approved decision, a move that could now put ...
FOX31 Denver

Tennessee library director refuses to remove 190 children’s books

RUTHERFORD COUNTY, Tenn. (WKRN) — A dispute over children’s books in Tennessee is escalating after a library system’s director refused to follow a board-approved decision, a move that could now put ...