CRITICAL

Why some security fixes never reach your vulnerability dashboard

CSO Online • May 20, 2026

HIGH

AntV data visualization tool the latest to be hit by ongoing npm supply chain attacks

CSO Online • May 19, 2026

HIGH

Open source package with 1 million monthly downloads stole user credentials

Ars Technica Security • Apr 27, 2026

CRITICAL

Telnyx package on PyPI compromised by TeamPCP. WAV steganography used for payload delivery

Reddit r/netsec • Mar 28, 2026

HIGH

TeamPCP strikes again - telnyx popular PyPI library compromised

Reddit r/netsec • Mar 27, 2026