Tesla's former VP Andrej Karpathy shares AI coding 'horror', 'Python supply chain attack' that could have wiped millions of SSL private keys, database passwords, mor…

Andrej Karpathy, the former Tesla AI director and OpenAI cofounder, is calling a recent Python package attack \"software ...

OpenAI acquires Astral, the Python startup whose tools run on millions of developer machines

OpenAI has acquired Astral, a startup whose essential Python development tools are used by millions. This strategic move aims ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.
InfoWorld

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes ...

OpenAI acquires open-source Python tooling startup Astral

OpenAI Group PBC today announced plans to acquire Astral Software Inc., a startup with a set of widely used Python ...
Circuit Digest

Hand Gesture Control Robot Using OpenCV

Gesture control robotics replaces traditional buttons and joysticks with natural hand movements. This approach improves user ...

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...
eWeek

From 1M Downloads to Shutdown: Why OpenAI Pulled the Plug on Sora

OpenAI is shutting down Sora, raising questions for users while signaling a shift toward profitability, productivity tools, ...

OpenAI Acquires Python Toolmaker Astral to Expand Its AI Development Ecosystem

OpenAI acquires Python toolmaker Astral to boost its AI development ecosystem. Discover how this strategic move enhances high ...
Tom's Hardware on MSN

Rogue OpenClaw AI agent wrote and published 'hit piece' on a Python developer who rejected its code

An OpenClaw autonomous AI agent has hit back at a volunteer maintainer of a Python library who rejected its code by posting a ...
Infosecurity Magazine

TeamPCP Expands Supply Chain Campaign With LiteLLM PyPI Compromise

Researchers attributed the compromise to TeamPCP, the same threat group linked to the aforementioned Trivy compromise and ...

AI & Tech Brief: The cybersecurity gold rush

Cybersecurity and tech firms are positioning themselves to capture the exploding market for AI “governance.” Why leading ...