SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...
Computer Weekly

Cyber pros must grasp the vibe coding nettle, says NCSC chief

At RSA in San Francisco, NCSC chief exec Richard Horne says security professionals have an opportunity, and a responsibility, to get out in front of the security issues raised by the popularity of ...