Point Wild Releases Free LiteLLM Vulnerability Scanner Within 24 Hours of Supply Chain Attack

New AI-powered scanner -- who-touched-my-packages -- detects zero-day malicious packages and credential exfiltration in seconds BOSTON, March 26, 2026 /PRNewswire/ -- Point Wild, a leading global ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB of data.
CSO Online

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes configs, SSH keys, and automation pipelines before being removed.
Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide. This analysis walks through the Trivy supply‑chain compromise, attacker ...
Scientific Research Publishing

A Novel ICT-Enabled Decision Support Approach for Surveillance and Control of Mosquito-Borne Diseases ()

Bura, A. and Mung’onya, E. (2026) A Novel ICT-Enabled Decision Support Approach for Surveillance and Control of ...

API proficiency in ChatGPT fetches Rs 30 lakh avg salary in India: Report

Developers with API-level expertise in AI tools such as ChatGPT from OpenAI earn an average salary of Rs 30.3 lakh in India, ...
Bleeping Computer

Microsoft to enable Windows hotpatch security updates by default

Microsoft will turn on hotpatch security updates by default for all eligible Windows devices managed through Microsoft Intune and the Microsoft Graph API, beginning with the May 2026 Windows security ...
Business Insider

Mimecast Eliminates the API Email Security Trade-Off with Complete Threat Detection

LEXINGTON, Mass., March 10, 2026 (GLOBE NEWSWIRE) -- Mimecast, a global leader in managing human and AI risk, today announced that its complete email security protection stack is now available through ...
Liliputing

Motorola plans to ship phones with GrapheneOS (Google-free, security-hardened Android)

GrapheneOS is an open source, Android-based operating system that puts an emphasis on privacy and security features. It’s been stripped of Google apps and services and includes replacements including ...
Bleeping Computer

Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers with cryptocurrency-related tasks. The activity has been ongoing since at ...
CoinDesk

GoPlus Security H2 2025: Executing Through Market Stress as Web3 Losses Hit $4B

In the second half of 2025, GoPlus Security continued to reinforce its position as a foundational infrastructure layer within the Web3 security stack. Rather than signaling a strategic shift, H2 was ...
Security

APi Group Completes Acquisition of CertaSite

APi Group Corp. announced it has completed its acquisition of CertaSite, a Midwest-based fire and life safety services provider. The deal, which closed on February 2, brings an inspection-focused ...