On March 27, 2026 the Telnyx Python SDK on PyPI was backdoored by the actor known as TeamPCP using stolen maintainer credentials — not typosquatting. Malicious code landed only in telnyx/_client.py inside published releases 4.87.1 and 4.87.2 (no corresponding GitHub tags or releases), and the package’s ~700,000 monthly-download footprint made the trojanized SDK a high-value […]
CVE-2026-4681 is a critical remote-code-execution flaw in PTC Windchill PDMLink and FlexPLM tied to unsafe deserialization; independent detections show Indicators of Compromise (IOCs) consistent with active exploitation attempts, so organizations running affected versions should treat this as an incident in progress rather than a purely theoretical risk. Which deployments are at highest immediate risk The […]
On March 11, 2026, an Iran-linked group calling itself Handala used compromised Microsoft Entra ID and Intune administrative access to remotely wipe more than 200,000 devices in 79 countries. The incident demonstrates a specific danger: legitimate MDM capabilities can be weaponized through stolen admin credentials, producing destruction without any endpoint malware. How a single admin […]
Ericsson’s latest US breach is not just a case of one company losing control of sensitive records. It is a clearer example of how breach exposure now sits across two layers at once: direct access to internal systems and connected third-party software. That distinction matters here because the March 2026 incident affected about 4,377 people […]
