Malicious actors with code execution capability may gain root access on Linux systems using as few as 10 lines of Python, according to a researcher.

CVE-2026-42208 exploited within 36 hours of disclosure, exposing LiteLLM credentials, risking cloud account compromise.

Critical cPanel flaw under attack, Copy Fail Linux privilege escalation, TeamPCP supply chain campaign, GitHub RCE & major ...

It took 527 stolen credentials to leak the data of over 5 million guests. In March 2026, CyberNews discovered that an ...

On April 30, two releases of one of the most popular machine learning libraries on the Python Package Index were caught ...

A critical pre-authentication SQL injection vulnerability in BerriAI’s LiteLLM Python package came under active exploitation ...

A single line of Python code was all it took. Developers who ran import lightning after installing versions 2.6.2 or 2.6.3 of ...

Several npm packages for SAP's cloud application development ecosystem have been compromised as TeamPCP's supply chain ...

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...

Artificial intelligence (AI) automation and ransomware as a service (RaaS) platforms have fundamentally altered the threat ...

The US Cybersecurity and Infrastructure Security Agency (CISA) has asked owners and operators of operational technology to ...

Home » Security Bloggers Network » Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude Code to Compromise the CAP Framework The post Shai-Hulud Strikes SAP: Supply Chain Worm Weaponized Claude ...