SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

How to Use Almost Any Computer Without Leaving a Trace

Almost everything we do digitally leaves a trace of some kind, and while it can be useful to look back on this past ...

The Flipper One looks like a serious hacking tool, and I can't wait to try it - here's why

Without doubt, my favorite gadget from the past few years has been the Flipper Zero -- a pocket-sized Swiss Army knife that ...
Hackaday

Building A Robot Partner To Play Air Hockey With

Air hockey is one of those sports that’s both incredibly fun, but also incredibly frustrating as playing it by yourself is a ...
The Hacker News

Microsoft Warns Python Infostealers Target macOS via Fake Ads and Installers

Microsoft has warned that information-stealing attacks are "rapidly expanding" beyond Windows to target Apple macOS environments by leveraging cross-platform languages like Python and abusing trusted ...
ZDNet

Microsoft's latest zero-day patch blocks a viral Office document hack - how to protect your PC ASAP

I wore the world's first HDR10 smart glasses TCL's new E Ink tablet beats the Remarkable and Kindle Anker's new charger is one of the most unique I've ever seen Best laptop cooling pads Best flip ...
Kotaku

Steam Game Devs Call Exploit Allegations ‘Clickbait Exaggeration’ And ‘Malicious Defamation’

The developers behind a popular “open source MMO RTS sandbox game for programming enthusiasts” on Steam, named Screeps: World, have been forced to update their game “in order to protect both players” ...
TechCrunch

Founder of spyware maker pcTattletale pleads guilty to hacking and advertising surveillance software

The founder of a U.S.-based spyware company, whose surveillance products allowed customers to spy on the phones and computers of unsuspecting victims, pleaded guilty to federal charges linked to his ...
Detroit News

A stalking app, $1.2M Macomb Co. mansion lead feds to pcTattletale creator

Federal prosecutors are expected to file criminal charges soon after agents working undercover in Macomb County investigated the creator of an app that let users remotely spy on victims’ cell phones ...
The Hacker News

Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages

Cybersecurity researchers have discovered vulnerable code in legacy Python packages that could potentially pave the way for a supply chain compromise on the Python Package Index (PyPI) via a domain ...
PC Gamer

The Python Software Foundation has turned down a $1.5 million US government grant amid ethical concerns

AI Anthropic is suing the US government for blacklisting it and it's calling in support from Google and OpenAI AI 'We shouldn't have rushed to get this out on Friday': OpenAI hastily amends the terms ...