AtlasCross RAT spreads via 11 fake domains registered October 27, 2025, enabling encrypted C2 control and persistence.

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

LiteLLM, a widely used AI developer tool, was hit by a supply chain attack through a malicious PyPI release. The malware stole credentials, spread across systems, and crashed machines. The incident ...

Add Decrypt as your preferred source to see more of our stories on Google. Hermes Agent saves every workflow it learns as a reusable skill, compounding its capabilities over time—no other agent does ...

Python 3.15 introduces an immutable or ‘frozen’ dictionary that is useful in places ordinary dicts can’t be used.

IntroductionIn February 2022, BlackBasta emerged as a successor to Conti ransomware and quickly rose to prominence. BlackBasta was operational for three years until February 2025 when their internal ...

Andrej Karpathy, the former Tesla AI director and OpenAI cofounder, is calling a recent Python package attack "software horror"—and the details are genuinely alarming. A compromised version of LiteLLM ...

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.

Threat actors can extract Google API keys embedded in Android applications to gain access to Gemini AI endpoints and ...

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of ...

Fired Attorney General Pam Bondi still will have to appear for a slated deposition before the House Oversight Committee, members who voted to subpoena her said Thursday, even as the panel’s majority ...

PM This week in cybersecurity: botnets, RCE flaws, AI-driven attacks, stealers, and more. Fast, no-fluff roundup.