12 News Items
THN · BleepingComputer · Krebs · Dark Reading · SANS
THN · BleepingComputer · Krebs · Dark Reading · SANS
📰 Cybersecurity News Headlines
Top stories from leading cybersecurity publications as of March 28, 2026.
-
Backdoored Telnyx PyPI package pushes malware hidden in WAV audio
— Bleeping Computer
TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver credential-steal… -
Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits
— The Hacker News
Apple is now sending Lock Screen notifications to iPhones and iPads running older versions of iOS and iPadOS to alert users of web-based att… -
TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files
— The Hacker News
TeamPCP, the threat actor behind the supply chain attack targeting Trivy, KICS, and litellm, has now compromised the telnyx Python package b… -
Fake VS Code alerts on GitHub spread malware to developers
— Bleeping Computer
A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the Discussions se… -
China Upgrades the Backdoor It Uses to Spy on Telcos Globally
— Dark Reading
Chinese APT Red Menshen's super-advanced BPFdoor malware defeats traditional cybersecurity protections. All telcos can do, really, is try hu… -
Wartime Usage of Compromised IP Cameras Highlight Their Danger
— Dark Reading
The list of countries exploiting Internet-connected cameras to give them eyes inside their adversaries' borders continues to expand. What sh… -
TeamPCP Supply Chain Campaign: Update 002 – Telnyx PyPI Compromise, Vect Ransomware Mass Affiliate Program, and First Named Victim Claim, (Fri, Mar 27th)
— SANS ISC
This is the second update to the TeamPCP supply chain campaign threat intelligence report, "When the Security Scanner Became the Weapon" (v3… -
Agentic GRC: Teams Get the Tech. The Mindset Shift Is What's Missing.
— Bleeping Computer
Agentic GRC automates workflows, forcing teams to rethink their role beyond operations. Anecdotes explains why the biggest challenge is shif… -
Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks
— The Hacker News
Cybersecurity researchers have disclosed details of a now-patched bug impacting Open VSX's pre-publish scanning pipeline to cause the tool t… -
Infrastructure Attacks With Physical Consequences Down 25%
— Dark Reading
Operational technology (OT) at industrial and critical infrastructure sites seem to have been benefitting from a lull in ransomware, and hac… -
Google Sets 2029 Deadline for Quantum-Safe Cryptography
— Dark Reading
The post-quantum future may be coming sooner than you think, as Google plans to have PQC migration in place by 2029. -
European Commission investigating breach after Amazon cloud account hack
— Bleeping Computer
The European Commission, the European Union's main executive body, is investigating a security breach after a threat actor gained access to…
Generated by HiveNet.ai Threat Intelligence Platform · March 28, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC