TeamPCP Claims Sale of Mistral AI Repositories Amid Mini Shai-Hulud Attack

TeamPCP claims to be selling alleged Mistral AI repositories on a hacker forum after the Mini Shai-Hulud attack targeted npm and PyPI ecosystems.

·

AI, Cyber Attack, Cyber Crime, cybersecurity, Data Breaches, Mistral AI, npm, PyPI, Security, Supply Chain, TeamPCP

¶¶¶¶¶

TeamPCP Used Mini Shai-Hulud Worm to Poison Over 400 npm and PyPI Packages

Research reveals that TeamPCP hijacked OIDC tokens to poison hundreds of TanStack, Mistral AI, and UiPath packages with the self-propagating Mini Shai-Hulud worm.

·

Cyber Attack, Malware, Mini Shai-Hulud, npm, PyPI, Security, Supply Chain, TeamPCP

¶¶¶¶¶

Google Says Hackers Used AI to Develop a Zero-Day Exploit

Google researchers say hackers used AI to develop zero-day exploits, Android backdoors, and automated supply chain attacks targeting GitHub and PyPI.

·

0day, AI, Android, Artificial Intelligence, backdoor, Cyber Attack, cybersecurity, GitHub, Google, Malware, PyPI, Security, vulnerability

¶¶¶¶¶

Malicious PyPI Package Mimics as SOCKS5 Proxy Tool Attacking Windows Platforms

JFrog’s security research team has identified a malicious PyPI package named SoopSocks that masquerades as a legitimate SOCKS5 proxy utility while stealthily implanting a backdoor on Windows systems. This package leverages automated installation, advan…

·

cyber security, Cyber Security News, proxy, PyPI, Windows

¶¶¶¶¶

Malicious Typosquatted PyPI Packages Spreading SilentSync RAT

On August 4, 2025, Zscaler ThreatLabz uncovered two malicious Python packages—sisaws and secmeasure—that deliver SilentSync, a Python-based remote access trojan (RAT), to unsuspecting developers. Both packages leverage typosquatting to impersonate legi…

·

cyber security, Cyber Security News, PyPI

¶¶¶¶¶

1010.cx

1010.cx

Category: PyPI