SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...
eWeek

From 1M Downloads to Shutdown: Why OpenAI Pulled the Plug on Sora

OpenAI is shutting down Sora, raising questions for users while signaling a shift toward profitability, productivity tools, ...
The Hacker News

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...
eWeek

OpenAI Cleaned House and Threw Out Sora, Disney, and More

Explore OpenAI's recent changes as it bids farewell to Sora, Disney, and more. Find out what this means for the future of ...
Infosecurity Magazine

TeamPCP Expands Supply Chain Campaign With LiteLLM PyPI Compromise

Researchers attributed the compromise to TeamPCP, the same threat group linked to the aforementioned Trivy compromise and ...

GenAI in Business: Leveraging the Existing .NET Foundation

Generative AI with .NET from SDKs and streaming to tools and agents: an overview of OpenAI, Azure, and the new Microsoft ...
CDOTrends

Tangled Data Pipelines? Here’s How IBM Wants to Fix Them.

The AI era revealed that most enterprises are still wrestling with their data plumbing. IBM’s new approach to data ...
YourStory

Startup news and updates: Daily roundup (March 25, 2026)

YourStory presents the daily news roundup from the Indian startup ecosystem and beyond. Here's the roundup for Wednesday, ...
Cybernews

Critical Python supply chain compromise: how library used by millions of AI developers got infected with malware

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...

Crunchyroll Officially Wipes Out 900+ Anime Piracy Apps in 1 Move

Crunchyroll's anti-piracy push continues to yield results, as the streamer's legal team has shut down over 900 third-party ...
Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...