Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver credential-stealing malware hidden inside a WAV file. Earlier today, the ...

The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...

A phishing campaign targeting healthcare, government, hospitality, and education sectors uses several evasion techniques to ...

During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude ...

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across ...

A summary of the announcements made by vendors in the days leading up to the RSAC 2026 Conference. As hundreds of vendors ...

A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, ...

The US cybersecurity agency CISA has flagged a critical code injection flaw in Langflow, the open-source visual framework widely used to build AI agent ...

With the arrival of the Base44 vibe-coding platform, natural language could be the new language of software development.

Turn any website into a desktop app with Pake. Create fast, lightweight apps without browser dependency or bloat.

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...