12 News Items
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com
📰 Cybersecurity News Headlines
Top stories from leading cybersecurity publications as of March 28, 2026.
-
Backdoored Telnyx PyPI package pushes malware hidden in WAV audio
— Bleeping Computer
TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver credential-steal… -
Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits
— The Hacker News
Apple is now sending Lock Screen notifications to iPhones and iPads running older versions of iOS and iPadOS to alert users of web-based att… -
TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files
— The Hacker News
TeamPCP, the threat actor behind the supply chain attack targeting Trivy, KICS, and litellm, has now compromised the telnyx Python package b… -
Fake VS Code alerts on GitHub spread malware to developers
— Bleeping Computer
A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the Discussions se… -
China Upgrades the Backdoor It Uses to Spy on Telcos Globally
— Dark Reading
Chinese APT Red Menshen's super-advanced BPFdoor malware defeats traditional cybersecurity protections. All telcos can do, really, is try hu… -
Wartime Usage of Compromised IP Cameras Highlight Their Danger
— Dark Reading
The list of countries exploiting Internet-connected cameras to give them eyes inside their adversaries' borders continues to expand. What sh… -
TeamPCP Supply Chain Campaign: Update 002 – Telnyx PyPI Compromise, Vect Ransomware Mass Affiliate Program, and First Named Victim Claim, (Fri, Mar 27th)
— SANS ISC
This is the second update to the TeamPCP supply chain campaign threat intelligence report, "When the Security Scanner Became the Weapon" (v3… -
Agentic GRC: Teams Get the Tech. The Mindset Shift Is What's Missing.
— Bleeping Computer
Agentic GRC automates workflows, forcing teams to rethink their role beyond operations. Anecdotes explains why the biggest challenge is shif… -
Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks
— The Hacker News
Cybersecurity researchers have disclosed details of a now-patched bug impacting Open VSX's pre-publish scanning pipeline to cause the tool t… -
Infrastructure Attacks With Physical Consequences Down 25%
— Dark Reading
Operational technology (OT) at industrial and critical infrastructure sites seem to have been benefitting from a lull in ransomware, and hac… -
ISC Stormcast For Friday, March 27th, 2026 https://isc.sans.edu/podcastdetail/9868, (Fri, Mar 27th)
— SANS ISC
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. -
Threat Brief: March 2026 Escalation of Cyber Risk Related to Iran (Updated March 26)
— Unit 42
Unit 42 details recent Iranian cyberattack activity, sharing direct observations of phishing, hacktivist activity and cybercrime. We include…
Generated by CryptXNet.ai Threat Intelligence Platform · March 28, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC, THN Threat Intel, Unit 42, Security.com