SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

Trivy supply-chain attack spreads to Docker, GitHub repos

The TeamPCP hackers behind the Trivy supply-chain attack continued to target Aqua Security, pushing malicious Docker images ...
The Hacker News

Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper

Trivy supply chain attack pushed malicious Docker images on March 22, enabling credential theft and worm spread, impacting ...
Amazon S3 on MSN

Breaking the entire game using these powerful Roblox admin commands

Poke pushes Roblox to its limits by breaking the game with insane admin commands.
Indiatimes on MSN

Next Roblox pull lucky blocks admin abuse event: Start date, global time, and more (28th March)

Pull Lucky Blocks Admin Abuse on March 28, 2026 starts at 3:00 PM UTC. This guide covers event timing, rewards, bonuses, and how to prepare for rare drops and boosts efficiently.
InfoWorld

OpenAI adds plugin system to Codex to help enterprises govern AI coding agents

The move lets IT administrators standardize and distribute agent behaviors across engineering teams, but OpenAI’s third-party ...
Cybernews

Critical Python supply chain compromise: how library used by millions of AI developers got infected with malware

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...