Morning Overview on MSN

Hackers poisoned the PyTorch Lightning AI package and it started stealing credentials the moment you imported it

A single line of Python code was all it took. Developers who ran import lightning after installing versions 2.6.2 or 2.6.3 of ...
The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
About Amazon

AWS launches Amazon Quick desktop AI assistant that works across your applications, tools, and data

Amazon Quick brings a personal AI assistant to your desktop. Build presentations, intelligent dashboards, and more. Connect ...

Top open source PyPI package with over 1 million downloads each month hacked to send out malware

This was not a case of stolen credentials, but rather of vulnerability exploitation.
Dark Reading

UNC6692 Combines Social Engineering, Malware, Cloud Abuse

A newly discovered threat actor is using Microsoft Teams, AWS S3 buckets, and custom "Snow" malware in a multipronged ...

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

There's a Cave Full of Bats Infected by the 'Bleeding Eye' Virus. People Are Trespassing to See It, and Scientists Want It to Stop

Scientists are sounding the alarm about humans trespassing on cave that's full of bats infected with the 'Bleeding Eye' ...

Mantle Unites Global AI, Tech, and Youth Communities for Its Largest AI Hackathon, Backed by Tencent Cloud, Bybit, Byreal, and Blockchain for Good Alliance

Mantle, the premier distribution layer connecting traditional finance with on-chain liquidity and real-world assets, today announced the Turing Test Hackathon 2026, a two-phase AI competition with a ...
DATAQUEST

Best AI Courses in 2026: Beginner to advanced Pro certifications to boost salary and career in India

Best AI courses 2026 in India including Google, AWS, and MIT certifications. Learn AI from beginner to expert level and boost ...
The Hacker News

SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files

CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...