Advertisement
SU
HIGH
Supply Chain
Malicious PyPI Package elementary-data Hijacked for Infostealer
High-profile supply chain attack on the elementary-data PyPI package compromises developer credentials and crypto wallets via account takeover. Patch now.
Runtime Rebel Intel
4 min read·Apr 27, 2026
SU
HIGH
Supply Chain
Backdoored Telnyx PyPI Package Uses Steganography to Deliver Malware
Security researchers discovered malicious versions of the Telnyx PyPI package delivering infostealers via steganography hidden in WAV audio files.
Runtime Rebel Intel
3 min read·Mar 28, 2026
CRITICAL
Supply Chain
TeamPCP Backdoors LiteLLM 1.82.7–1.82.8 via CI/CD Compromise
TeamPCP threat actors compromised LiteLLM versions 1.82.7 and 1.82.8, deploying credential harvesters and Kubernetes lateral movement tools via CI/CD.
Runtime Rebel Intel
3 min read·Mar 24, 2026