Expert perspectives on application security, compliance, and emerging threats
IncidentOn March 24, the cybercriminal group TeamPCP uploaded malicious versions 1.82.7 and 1.82.8 of LiteLLM—a popular Python library for AI application development—to the Python Package Index (PyPI). These
IncidentWhat happened TeamPCP, a threat actor group, published two malicious versions of the legitimate Telnyx package on the Python Package Index (PyPI) . Versions 4.87.1 and 4.87.2 contained malware hidden
IncidentWhat Happened In the past 18 months, organizations using AI systems have faced security failures that traditional identity-based controls couldn t stop. While no single breach stands out, the overall
IncidentA coordinated supply chain attack using poisoned Ruby gems and Go modules has exposed how attackers now target the seams between your package managers and CI/CD pipelines. The campaign, attributed to
Get weekly security insights and compliance updates delivered to your inbox.
IncidentWhat Happened In early 2026, security researchers disclosed CVE-2026-42208 , a critical SQL injection vulnerability in LiteLLM, a widely-used open-source AI Gateway. This flaw has a CVSS score of 9.3,
IncidentWhat Happened LiteLLM, an API gateway for accessing multiple AI model providers, had a critical SQL injection vulnerability (CVE-2026-42208) in its API key validation logic. This flaw allowed attacker
IncidentThe Shift in Vulnerability Discovery Mythos marks a pivotal change: AI-driven vulnerability discovery now outpaces human-led security responses. This advancement means vulnerabilities, which once took
IncidentWhat Happened On April 29, 2026, attackers published malicious versions of four npm packages in the SAP development ecosystem. They exploited a CI pipeline vulnerability that allowed unauthorized npm
IncidentAn AI agent captured sensitive credentials and leaked them through an external messaging service. This incident occurred during research by Okta Threat Intelligence using OpenClaw, an AI agent framewo
IncidentSummary of the Incident A critical authentication bypass vulnerability in cPanel WHM, identified as CVE-2026-41940, allowed attackers to access administrative functions without credentials. With a CVS
IncidentWhat Happened On April 30, 2026, attackers published two malicious versions of PyTorch Lightning—versions 2.6.2 and 2.6.3—to the Python Package Index (PyPI) after compromising a publisher account. The
IncidentIncident Overview On April 30, 2026, attackers released two compromised versions of PyTorch Lightning —2.6.2 and 2.6.3—on the Python Package Index (PyPI) after gaining control of a publisher account.
IncidentWhat Happened On April 30, 2026, threat actors released two malicious versions of PyTorch Lightning—2.6.2 and 2.6.3—on the Python Package Index (PyPI). These packages included a hidden _runtime direct
IncidentOn a routine Thursday, developers who ran npm install on SAP s Cloud Application Programming Model packages received more than they expected. Four official SAP packages — @cap-js/sqlite v2.2.2, @cap-j
IncidentGitHub recently faced a potential crisis with CVE-2026-3854, a remote code execution vulnerability that threatened millions of private repositories. Within two hours of receiving the report, GitHub ha
IncidentWhat Happened On January 15, 2025, GitHub disclosed a remote code execution (RCE) vulnerability affecting both GitHub.com and GitHub Enterprise Server. Wiz security researchers discovered the flaw usi
