Transformer on MSN

The two fronts in the OpenAI and Anthropic battle

Transformer Weekly: New Claude Mythos model details leaked, Anthropic wins injunction against DoD blacklisting and ...
The Hacker News

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...
Decrypt

Franklin Templeton, Ondo Finance Bring 24/7 Tokenized ETF Trading to Crypto Users

Five Franklin Templeton ETFs will be tokenized via Ondo Finance as the firms seek to broaden access to traditional assets ...
CoinDesk

U.S. lawmakers dig into tokenizing securities as Trump ties muddy waters

A U.S. House of Representatives hearing reviewed tokenization, with a broad agreement that securities traded via token need ...
OfficeChai

LiteLLM Attack: How a Hacked Security Tool Became a Master Key to Thousands of AI Developer Machines

On the morning of March 24, 2026, tens of thousands of software developers working on AI applications were unknowingly exposed to malware.

JetBrains shifts to agentic dev with Central, retires pair programming

Dev tooling biz JetBrains has previewed Central for agentic AI software development but will retire the Code With Me human ...

Tesla's former VP Andrej Karpathy shares AI coding 'horror', 'Python supply chain attack' that could have wiped millions of SSL private keys, database passwords, mor…

Andrej Karpathy, the former Tesla AI director and OpenAI cofounder, is calling a recent Python package attack \"software ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
Cybernews

Critical Python supply chain compromise: how library used by millions of AI developers got infected with malware

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...
InfoWorld

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes ...

Cloudflare’s new Dynamic Workers ditch containers to run AI agent code 100x faster

Cloudflare says dynamically loaded Workers are priced at $0.002 per unique Worker loaded per day, in addition to standard CPU ...