SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB of data.

As ‘Spamalot’ returns to L.A., Eric Idle is feeling sentimental about his epic career

As 'Spamalot' returns to the Hollywood Pantages, Eric Idle says of absurdist comedy, 'these are the sort of times when we need it.' ...
The Hacker News

Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer

Microsoft on Thursday disclosed details of a new widespread ClickFix social engineering campaign that has leveraged the Windows Terminal app as a way to activate a sophisticated attack chain and ...
Windows Report

Critical Notepad Security Bug Could Execute Remote Scripts, Now Fixed

Microsoft has released a security update addressing a remote code execution vulnerability in the modern Notepad app distributed via the Microsoft Store. The flaw, tracked as CVE-2026-20841, carries a ...
Rail

A freight train in carriage sidings? Trial run success ahead of terminal opening

The unusual sight of a freight train in a set of South London carriage sidings occurred in mid-December. From mid-2026 DCRail will be able to run aggregates trains into Plumstead, with a proving run ...
PC World

How to build your own air quality meter with a Raspberry Pi and CO2 sensor

PCWorld explains how to create an affordable CO2 air quality monitor using a Raspberry Pi and MH-Z19C sensor for under $40. This DIY project helps monitor indoor air quality since high CO2 levels ...
Bleeping Computer

Malicious Blender model files deliver StealC infostealing malware

A Russian-linked campaign delivers the StealC V2 information stealer malware through malicious Blender files uploaded to 3D model marketplaces like CGTrader. Blender is a powerful open-source 3D ...