Popular LiteLLM PyPI package compromised in TeamPCP supply chain attack

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...
The Hacker News

Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials

Cybersecurity researchers have uncovered a new set of malicious npm packages that are designed to steal cryptocurrency ...

Chrome encryption bypass discovered: New malware steals passwords and cookies

The infostealer uses a first‑seen‑in‑the‑wild debugging method to extract Chrome’s decryption key without privilege ...
Decrypt

Resolv Labs Stablecoin Depegs, Plunges 74% After $25M Exploit

A compromised key enabled an attacker to illegally mint 80 million USR tokens, causing the stablecoin to lose its dollar peg.
New Scientist

Security credentials inadvertently leaked on thousands of websites

Researchers identified nearly 10,000 websites where API keys could be found, exposing details that could let attackers access ...
CBS News

Bill Gates, Elon Musk among big names in Epstein files. Here's what the latest documents show.

Scott MacFarlane is CBS News' Justice correspondent. He has covered Washington for two decades, earning 20 Emmy and Edward R. Murrow awards. His reporting has resulted directly in the passage of five ...