The Wire
Curated cybersecurity and tech news — AI-summarized, source attributed.
PyTorch Lightning 2.6.3 on PyPI shipped ShaiWorm credential stealer via import hook
A trojaned build of PyTorch Lightning (version 2.6.3) was published to PyPI carrying a hidden execution chain that fired on import. The chain pulled down the Bu
Quantized Granite 4.1 3B fails the pelican-on-bicycle SVG test across all 21 variants
IBM shipped its Granite 4.1 LLM family under Apache 2.0 in 3B, 8B, and 30B sizes, with training methodology documented by team member Yousaf Shah. Unsloth follo
Silver Fox expands ABCDoor campaign to India and Russia via tax-themed phishing
China-linked threat group Silver Fox is running tax-themed phishing waves against organizations in India and Russia, delivering a previously undocumented Python
Silver Fox Pivots to Tax-Themed Lures Against India and Russia
The China-aligned Silver Fox crew has expanded its targeting beyond its usual Chinese-speaking victim pool, running tax-themed social engineering campaigns agai
Springer Nature retracts widely cited ChatGPT-in-education meta-analysis
Springer Nature has pulled a May 2025 paper in Humanities & Social Sciences Communications that claimed ChatGPT delivered a large positive effect on student lea
Strix uncovers zero-auth IDOR in DoD contractor's multi-tenant SaaS
An AI-driven security testing tool from Strix surfaced a broken authorization flaw in a DoD-backed startup's multi-tenant platform. The bug allowed cross-tenant
TRE regex engine shrugs off ReDoS attacks that choke Python's re module
Simon Willison built an experimental Python ctypes binding to Ville Laurikari's TRE regex library after noticing antirez had pulled it into Redis. The motivatio
Trellix confirms breach after attackers access portion of source code repo
Trellix, the cybersecurity vendor born from the 2021 McAfee Enterprise and FireEye merger, has disclosed unauthorized access to part of its source code reposito
VENOMOUS#HELPER campaign abuses SimpleHelp and ScreenConnect to backdoor 80+ orgs
A phishing operation tracked as VENOMOUS#HELPER has compromised more than 80 organizations, predominantly in the U.S., by weaponizing legitimate Remote Monitori
Weaver E-cology RCE flaw exploited days after patch, weeks before disclosure
Attackers began hitting CVE-2026-22679, an unauthenticated RCE in Weaver E-cology 10.0, on March 17 — five days after the vendor shipped a fix and roughly two w
Weekly Recap: cPanel Zero-Day, Linux Copy Fail, GitHub RCE, and TeamPCP's Supply Chain Spree
Attackers spent the week occupying systems rather than just breaching them. CVE-2026-41940, a critical authentication bypass in cPanel/WHM, is under active expl
Willison's April 2026 newsletter: Opus 4.7, GPT-5.5 price hikes, Claude Mythos security
Simon Willison's sponsors-only April newsletter covers the month's frontier model churn: Anthropic's Opus 4.7 and OpenAI's GPT-5.5 both shipped with price incre