The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.

AI recruiting startup Mercor confirms supply chain attack via LiteLLM library compromise. Hackers claim 4TB of data including ...

Security teams are scrambling after two malicious releases of the Telnyx Python SDK were uploaded to PyPI on March 27, turning a widely used developer tool into a credential-stealing backdoor that ...

Karpathy proposes something simpler and more loosely, messily elegant than the typical enterprise solution of a vector ...

How AI has suddenly become much more useful to open-source developers ...

Currently, AI is certainly creating more work for its users, requiring time to prepare context and check outcomes. Claude ...

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

Language package managers like pip, npm, and others pose a high risk during active supply chain attacks. However, OS updates ...

Overview Natural Language Processing (NLP) has evolved into a core component of modern AI, powering applications like chatbots, translation, and generative AI s ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Compare the top 5 customer identity and access management (CIAM) platforms in 2026 to find the right fit for your product's ...

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...