Forcepoint details TeamPCP supply chain attack that turned LiteLLM into a credential stealer

A new report out today from cybersecurity company Forcepoint LLC’s X-Labs research team details a supply chain attack that ...

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.
cybernews

Supply chain hit once again: single NPM account pushes 600+ compromised packages, used by ...

Another massive supply chain attack is spreading. Hundreds of compromised NPM packages are being detected, with hackers using stolen secrets to create over 2,200 public GitHub repositories, all ...
クラウド Watch

Pythonエンジニア育成推進協会、「Python 3 エンジニア認定入門試験 ...

一般社団法人Pythonエンジニア育成推進協会は20日、「Python 3 エンジニア認定入門試験」の申し込み受付を開始し、6月22日~8月21日の期間で全国300カ所のオデッセイCBT試験センターでベータ試験を実施すると発表した。
Spiceworks on MSN

Did AI write the worm that breached GitHub’s own house?

A single developer. One poisoned extension. Five supply chain surfaces compromised in 48 hours. And a threat group claiming ...