The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
Morning Overview on MSN

PyTorch Lightning versions 2.6.2 and 2.6.3 were compromised on April 30 — check your installs

On April 30, 2026, someone slipped credential-stealing malware into two freshly published versions of PyTorch Lightning, one ...

Top open source PyPI package with over 1 million downloads each month hacked to send out malware

This was not a case of stolen credentials, but rather of vulnerability exploitation.
Dark Reading

TeamPCP Hits SAP Packages With 'Mini Shai-Hulud' Attack

Several npm packages for SAP's cloud application development ecosystem have been compromised as TeamPCP's supply chain ...
GitHub

Azure AI Content Understanding Samples (Python)

Welcome! This repository contains REST API tutorial samples that demonstrate how to use the Azure AI Content Understanding service directly via HTTP calls with thin Python convenience wrappers. These ...
RSF

World Press Freedom Index 2025: over half the world's population in red zones

The 2025 World Press Freedom Index by Reporters Without Borders (RSF) found that more than half of the world's population lives in a country where press freedom is in a “very serious” situation — that ...