TeamPCP deploys Iran-targeted wiper in Kubernetes attacks

The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects systems configured for Iran.
The Hacker News

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

As 'Spamalot' returns to L.A., Eric Idle is feeling sentimental about his epic career

As 'Spamalot' returns to the Hollywood Pantages, Eric Idle says of absurdist comedy, 'these are the sort of times when we ...
Security Boulevard

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were ...
Security Boulevard

That “job brief” on Google Forms could infect your device

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain.

Malicious campaign targets popular OpenWebUI AI interface to mine crypty and steal credentials

Cybernews researchers uncovered numerous OpenWebUI instances that were silently running malware.
How-To Geek on MSN

DietPi just made it easy to host your own Google Photos on a Raspberry Pi

DietPi, the Raspberry Pi OS alternative, now has Immich as an optional package.
eWeek

Dancing Robot Goes Haywire at California Restaurant, Sends Plates and Food Flying

A dancing robot at a Haidilao restaurant in California went rogue mid-performance, sending food flying and raising concerns ...
Microsoft

Contagious Interview: Malware delivered through fake developer job interviews

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...
The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...
Stacker on MSN

How many of these 50 films that turned 50 last year have you seen?

Stacker ranked the top 50 films turning 50 in 2025, providing a strong overview of the innovative and long-lasting impact of ...

‘Drag’ SXSW Review: Come for the Petty Theft, Stay for the Unexpected Serial Killings

In 'Drag,' Raviv Ullman and Greg Yagolnitzer’s blackly comedic debut, two squabbling sisters choose the wrong house to break ...