Breaking News – Cyber Threats (last 6h)
Generated: 2026-03-24 17:00 PDT
- PTC warns of imminent threat from critical Windchill, FlexPLM RCE bug
BleepingComputer • 2026-03-24 16:04 • www.bleepingcomputer.com
PTC Inc. is warning of a critical vulnerability in Windchill and FlexPLM, widely used product lifecycle management (PLM) solutions, that could allow remote code execution. […]
https://www.bleepingcomputer.com/news/security/ptc-warns-of-imminent-threat-from-critical-windchill-flexplm-rce-bug/ - Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens
BleepingComputer • 2026-03-24 15:29 • www.bleepingcomputer.com
The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular “LiteLLM” Python package on PyPI and claiming to have stolen data from hundreds of thousands of devices during the attack. […]
https://www.bleepingcomputer.com/news/security/popular-litellm-pypi-package-compromised-in-teampcp-supply-chain-attack/ - FCC bans new routers made outside the USA over security risks
BleepingComputer • 2026-03-24 13:41 • www.bleepingcomputer.com
The Federal Communications Commission has updated its Covered List to include all consumer routers made in foreign countries, banning the sale of new models in the U.S. […]
https://www.bleepingcomputer.com/news/security/fcc-bans-new-routers-made-outside-the-usa-over-security-risks/ - TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise
The Hacker News • 2026-03-24 11:21 • thehackernews.com
TeamPCP, the threat actor behind the recent compromises of Trivy and KICS, has now compromised a popular Python package named litellm, pushing two malicious versions containing a credential harvester, a Kubernetes lateral movement toolkit, and a persistent backdoor.
Multiple security vendors, including Endor Labs and JFrog, revealed that litellm versions 1.82.7 and 1.82.8 were published on
https://thehackernews.com/2026/03/teampcp-backdoors-litellm-versions.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
