The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
Ventureburn

Leading Free Crypto Trading Bot: Top Picks and Comprehensive Guide for 2026

Free Crypto Trading Bots automate your crypto strategy in 2026. Discover the top 7 platforms to manage risks and earn passive income.
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
eWeek

Beyond Search: Perplexity’s Ambitious Plan to Take Over Your Mac

Perplexity is developing an always-on AI agent for Mac that can access apps and files to run tasks continuously, expanding its push beyond AI search.

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...
TechJuice

GlassWorm Malware Silently Infects Hundreds of Python Projects

GlassWorm attack uses stolen GitHub tokens to inject malware into Python repositories, exposing developers to supply chain ...
BeInCrypto

Ocean Network Wants to Turn Idle GPUs Into a Global Pay-Per-Use Compute Market

Ocean Network links idle GPUs with AI workloads through a decentralized compute market and editor-based orchestration tools.
Hackaday

This Week In Security: Second Verse, Worse Than The First

Isn’t there some claim events come in threes? After the extremely rare leak of the iOS Coruna exploit chain recently, now we have details from Google on a second significant exploit in the ...
Crypto Briefing

Ocean Network launches beta for affordable P2P GPU orchestration

Ocean Network bridges this gap by focusing on the Orchestration Layer. To ensure top-tier reliability and performance from ...
eWeek

Claude Can Now Click, Type, and Work Across Your Desktop

Anthropic is giving Claude agentic control over the computer, letting it click, browse, open files, and carry out tasks ...
SecurityWeek

RSAC 2026 Conference Announcements Summary (Pre-Event)

A summary of the announcements made by vendors in the days leading up to the RSAC 2026 Conference. As hundreds of vendors ...
Security Boulevard

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were ...