Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

Backdoored Telnyx PyPI package pushes malware hidden in WAV audio

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...
The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
Infosecurity Magazine

TeamPCP Targets Telnyx Package in Latest PyPI Software Supply Chain Attack

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

Readers and writers: Louise Erdrich collects 20 years of stories in ‘Python’s Kiss’

Python’s Kiss” is a highly anticipated collection of 13 stories by Louise Erdrich, illustrated with artwork by Erdrich’s ...
Hosted on MSN

This open-source Python library from Google is perfect for extracting text from anything

Messy insurance emails, property listings, and medical prescriptions are important documents in my daily workflow, but most of the time, it is difficult to get usable data out of them. Traditional ...
The New York Times

Book Review

Scouring estate sales, eBay and family basements, Rhae Lynn Barnes amassed a disturbing collection to write “Darkology,” her groundbreaking new book. By Jennifer Schuessler A.O. Scott contemplates the ...
insider.si.edu

Smithsonian Open Access

Welcome to Smithsonian Open Access, where you can download, share, and reuse millions of the Smithsonian’s images—right now, without asking. With new platforms and tools, you have easier access to ...