Meta is cutting close to 8,000 employees on May 20 in the first wave of what could be its biggest round of layoffs ever—surpassing even the 2022–23 "year of efficiency." A second wave is planned for ...

LiteLLM, a widely used AI developer tool, was hit by a supply chain attack through a malicious PyPI release. The malware stole credentials, spread across systems, and crashed machines. The incident ...

The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.

When Nandakishore Leburu was building LLM applications at LinkedIn, he learned that the models weren't the problem. The ...

Kodi continue d'évoluer avec la sortie de Kodi 22 "Piers" Alpha 3. Pas de nouvelle fonction spectaculaire à afficher, ni de ...

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.

PM This week in cybersecurity: botnets, RCE flaws, AI-driven attacks, stealers, and more. Fast, no-fluff roundup.

FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...

Samsung is sunsetting its own chat app while Apple adds end-to-end encryption to its already-live RCS, hinting that the final texting firewall might soon drop. Meanwhile, Cloudflare drafts a ...

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how quickly a compromised package can propagate through the ecosystem.