CERT-EU attributed a 92 GB data breach at the European Commission to TeamPCP, which compromised the Trivy security scanner in a supply chain attack. ShinyHunters leaked the data.

“The repo named in the notice was part of a fork network connected to our own public Claude Code repo, so the takedown ...

TeamPCP strikes again, with almost identical code to LiteLLM.

Overview Recently, NSFOCUS Technology CERT detected that the GitHub community disclosed that there was a credential stealing program in the new version of LiteLLM. Analysis confirmed that it had ...

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

Supply chain attacks feel like they're becoming more and more common.

Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across ...

A powerful iPhone-hacking technique known as DarkSword has been discovered in use by Russian hackers. It can take over devices running iOS 18 that simply visit infected websites. “A vast number of iOS ...

To learn more about the CNBC CFO Council, visit cnbccouncils.com/cfo New U.S laws designed for online child safety are pulling millions of adult Americans into ...

On Feb. 20, Anthropic released a vulnerability-scanning tool aimed at security applications, leading to an average drawdown of over 5% across our cybersecurity stock coverage as investors worry that ...