Better way to master Python.

Meta pauses Mercor partnership after a major data breach raises concerns over exposure of sensitive AI training data.

The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.

Meta has indefinitely paused work with $10B AI data startup Mercor after a LiteLLM supply chain attack exposed training ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...

North Korean hackers used an updated version of a known backdoor to target a popular npm package.

TeamPCP strikes again, with almost identical code to LiteLLM.

Mark Collier briefed me on two updates under embargo at KubeCon Europe 2026 last month: Helion, which opens up GPU kernel ...

FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...

Up to four npm packages on Axios were replaced with malicious versions, in one of the most sophisticated supply chain attacks ...

TeamPCP is exploring ways to monetize the secrets harvested during supply chain attacks, with identified ties to the Lapsus$ ...