A Python package presented as a privacy-first shortcut to AI models has been unmasked as a supply-chain threat that quietly captures user prompts, leans on a private university service without ...
Meta pauses Mercor partnership after a major data breach raises concerns over exposure of sensitive AI training data.
Meta has indefinitely paused work with $10B AI data startup Mercor after a LiteLLM supply chain attack exposed training ...
APERION (formerly LangSmart), the enterprise AI governance company, today announced the launch of the SmartFlow SDK, ...
After the supply chain attack on LiteLLM, attackers were able to access internal Cisco data, it is said. Source code from ...
AI hiring startup Mercor confirmed it was "one of thousands of companies" affected by the LiteLLM supply-chain attack as the ...
Security teams are scrambling after two malicious releases of the Telnyx Python SDK were uploaded to PyPI on March 27, turning a widely used developer tool into a credential-stealing backdoor that ...
Language package managers like pip, npm, and others pose a high risk during active supply chain attacks. However, OS updates ...
The cybercrime crew linked to the Trivy supply-chain attack has struck again, this time pushing malicious Telnyx package ...
JFrog reports Telnyx PyPI package was poisoned with malware by TeamPCP Malicious update delivered hidden .wav payload that ...
The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.
TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results