The Hacker News

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...
PCMag

Vibe Coding 101: How to Build Apps and More With AI

Have an app you've always wanted to build? A humdrum task to automate? AI tools make it easier than ever, but they can be as ...
eWeek

From 1M Downloads to Shutdown: Why OpenAI Pulled the Plug on Sora

OpenAI is shutting down Sora, raising questions for users while signaling a shift toward profitability, productivity tools, ...

UChicago students use historic maps, state-of-the-art technology to bring Chicago neighborhood history to life

The Chicago Urban Heritage Project​ is filling in blanks for the history of entire neighborhoods and Chicago as a whole, ...
OfficeChai

LiteLLM Attack: How a Hacked Security Tool Became a Master Key to Thousands of AI Developer Machines

On the morning of March 24, 2026, tens of thousands of software developers working on AI applications were unknowingly exposed to malware.

JetBrains shifts to agentic dev with Central, retires pair programming

Dev tooling biz JetBrains has previewed Central for agentic AI software development but will retire the Code With Me human ...

Tesla's former VP Andrej Karpathy shares AI coding 'horror', 'Python supply chain attack' that could have wiped millions of SSL private keys, database passwords, mor…

Andrej Karpathy, the former Tesla AI director and OpenAI cofounder, is calling a recent Python package attack \"software ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.
Cybernews

Critical Python supply chain compromise: how library used by millions of AI developers got infected with malware

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...
InfoWorld

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes ...
Opinion

YouTuber lands on Moon using a ZX Spectrum. Conditions apply

Could Sinclair's 48k Sinclair ZX Spectrum land a spacecraft on the Moon? YouTuber Scott Manley decided to find out, and the answer is… kind of. Phrases along the lines of "they landed on the Moon with ...
InfoWorld

Stop worrying: Instead, imagine software developers’ next great pivot

Pessimism in the face of coding agents like Claude Code is often just a lack of imagination. From steam engines to LLMs, ...