Blog

LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks

A slew of supply chain attacks against popular open source tools and packages appears to have been orchestrated by TeamPCP, a cybercriminal group that rose to prominence in late 2025. The latest victim of the group is BerryAI’s popular LiteLLM library, a unified interface that makes it easier for apps to switch between various LLMs: on March 24, TeamPCP uploaded two compromised versions (1.82.7 and 1.82.8) on PyPI that included a credential stealer and a … More → The post LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks appeared first on Help Net Security.
http://news.poseidon-us.com/TRhNW0

Akamai Brand Guardian detects and removes AI-driven brand impersonation

Akamai has introduced Akamai Brand Guardian, an evolution of Brand Protector that uses AI to identify and manage brand impersonation at scale. Scammers are exploiting the widespread availability of generative AI to deploy sophisticated fake websites and digital identities in seconds, making it nearly impossible for businesses to keep pace using manual discovery methods. For companies in sectors like financial services, retail, and healthcare, these fraudulent sites threaten digital integrity, which often leads to lost … More → The post Akamai Brand Guardian detects and removes AI-driven brand impersonation appeared first on Help Net Security.
http://news.poseidon-us.com/TRhNVs

Njordium AI blocks fake invoices and fraudulent payments

Njordium Cyber Group has launched its new AI Fraud Detection Module, a self-learning AI engine integrated into the recently released Vendor Management System (VMS). The module instantly detects and neutralises fake invoices, phantom services or products, and inflated pricing. Fully transparent and compliant with the EU AI Act, it delivers a regulator-aligned solution to Europe’s growing invoice fraud problem. According to the Expert Group on Public Economics (ESO) report Svarta siffror (2026:1), Sweden’s criminal economy … More → The post Njordium AI blocks fake invoices and fraudulent payments appeared first on Help Net Security.
http://news.poseidon-us.com/TRhNVd

Microsoft hands Entra ID users new option for MFA

Organizations rely on MFA to enforce identity checks before granting access to systems and services. Microsoft has made external MFA generally available in Microsoft Entra ID, expanding support for third-party identity providers. Configure external MFA in Microsoft Entra ID (Source: Microsoft) External MFA supports organizations that use third-party MFA solutions to meet regulatory or business requirements, handle scenarios such as mergers and acquisitions, or maintain a consistent MFA approach within Microsoft Entra ID. Built on … More → The post Microsoft hands Entra ID users new option for MFA appeared first on Help Net Security.
http://news.poseidon-us.com/TRhNSd

What to know about the current state of tech hiring

Data depicts an unstable landscape marked by rising demand for specific skills such as AI alongside waves of layoffs.
http://news.poseidon-us.com/TRhKvk

Anthropic cuts action approval loop, lets Claude Code make the call

Auto mode is a new permissions feature in the Claude Code system that allows the AI to make approval decisions on a user’s behalf while safeguards review actions before execution. The feature is available on Team plans and requires administrator approval before use, with support for Enterprise and API users expected soon. It runs on newer models such as Claude Sonnet 4.6 and Claude Opus 4.6, and excludes older versions and third party platforms. By … More → The post Anthropic cuts action approval loop, lets Claude Code make the call appeared first on Help Net Security.
http://news.poseidon-us.com/TRhHTY

Codenotary introduces AgentX for autonomous Linux infrastructure security

Codenotary has announced the availability of AgentX, an autonomous platform designed to manage, secure, and protect large-scale Linux infrastructure in the cloud or on-premises through coordinated networks of AI agents. AgentX introduces a new approach to infrastructure operations by allowing distributed AI agents to collaborate, automating security enforcement, operational tasks, and lifecycle management while maintaining full permissions control and governance for administrators. AgentX continuously reviews configurations, user roles, and security controls across servers, clusters, and … More → The post Codenotary introduces AgentX for autonomous Linux infrastructure security appeared first on Help Net Security.
http://news.poseidon-us.com/TRhC33

Spur Intelligence delivers deeper visibility into anonymized infrastructure

Spur Intelligence has announced new enhancements to its IP intelligence platform, designed to give security and fraud teams deeper visibility into anonymized infrastructure and enable informed, real-time decisions on risky user sessions. New capabilities include AI service identification, a policy API for real-time session decisions, and enhanced geographic infrastructure insights. AI service tagging in the Spur IP context object As AI-driven automation and anonymization technologies proliferate across the internet, organizations face growing challenges in distinguishing … More → The post Spur Intelligence delivers deeper visibility into anonymized infrastructure appeared first on Help Net Security.
http://news.poseidon-us.com/TRhC30