The Hacker News

LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure

CVE-2026-42208 exploited within 36 hours of disclosure, exposing LiteLLM credentials, risking cloud account compromise.
Hosted on MSN

PyPI package hack exposes developers to credential theft

A widely used PyPI package, 'elementary-data', was compromised through a malicious update that inserted infostealer code via a GitHub Actions workflow. The breach potentially exposed SSH keys, cloud ...

Top open source PyPI package with over 1 million downloads each month hacked to send out malware

This was not a case of stolen credentials, but rather of vulnerability exploitation.

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...
Pocket Tactics

Universal Tower Defense codes April 2026

April 26, 2026: We added one new [🪲CELL🪲] Universal Tower Defense code, offering rerolls and gems. You can check what codes are active and expired below. While anime fighters and thrilling racers ...
Pocket Tactics

Craft Anime codes April 2026

April 25, 2026: We searched far and wide for new Craft Anime codes, but there aren't fresh rewards just yet. Right now, you can claim over 20k in cash. Ever wondered what it's like to roam around with ...