Forcepoint details TeamPCP supply chain attack that turned LiteLLM into a credential stealer

A new report out today from cybersecurity company Forcepoint LLC’s X-Labs research team details a supply chain attack that compromised LiteLLM, a widely used open-source Python ...

AI-built ransomware toolkit automates EDR evasion, AD discovery

A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade ...
Unite.AI

Check Point’s “2026 Cloud Security Report: Securing the AI Transformation” Warns Enterprise Security Is Falling Behind AI Adoption

Artificial intelligence adoption is accelerating faster than enterprise security teams can adapt, according to the new “2026 Cloud Security Report: Securing the AI Transformation” by Check Point and ...

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
InfoQ

Google Expands SynthID Adoption for AI Watermarking, Previews Content Detection API

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...
GitHub

mmmu_vlm_kit.py

def _is_mmmu_parquet_corruption(error_output: str) -> bool: """Check if error is due to MMMU parquet file corruption.""" ...
GitHub

mmmu_vlm_kit.py

Official implementation of "Fast-dLLM: Training-free Acceleration of Diffusion LLM by Enabling KV Cache and Parallel Decoding" - NVlabs/Fast-dLLM ...