SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.
InfoWorld

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes ...

Doss raises $55M for AI inventory management that plugs into ERP

Doss's AI-powered inventory management system integrates with existing ERP systems. The Series B round was co-led by Madrona ...

Source Logistics Selects IFS Softeon WMS and Alpine Supply Chain Solutions to Fuel Nationwide Growth

Source Logistics ("Source"), a rapidly growing omni-channel distribution, warehousing, and transportation provider, today announced a new enterprise warehouse technology and implementation partnership ...