On March 24, 2026, a PyPI software supply chain attack hit LiteLLM — one of the most widely used AI libraries on the planet — and the fallout is still unfolding. This wasn’t a fake package. It wasn’t a typo-squatted name designed to fool developers who can’t spell. Attackers used real, stolen credentials to publish malicious code as the genuine article, right there in the off...

Fileless malware is one of the most dangerous attack types in the cybersecurity world right now, and the reason most people haven’t heard of it is also the reason it’s so effective: it leaves no trace. No file on your hard drive. No signature for your antivirus to find. Just malicious code sitting quietly in your RAM, doing what it was sent to do — and most of the time, nobod...

Bad guys don’t need to bring a weapon if you’ve already got one lying around. That’s the core idea behind a living off the land attack, and it’s one of the most effective — and underreported — techniques that ransomware operators use today. The tools attackers use to tear through your network aren’t tools they snuck in through a phishing email. They’re your t...

Password manager vulnerabilities aren’t something most people lose sleep over. You set up your password manager, you trust the zero-knowledge encryption pitch, and you move on. I get it. That’s kind of the whole point. But a new research paper out of Zurich just made it a lot harder to sleep quite so soundly — and I think you need to know about it.

This blog pos...