Backdoored PyTorch Lightning package drops credential stealer

A malicious version of the PyTorch Lightning package published on the Python Package Index (PyPI) delivers a ...

Kaltura Open-Sources Suite of AI Agent Skills, Enabling Any AI Agent to Build Intelligent Rich-Media Digital Experiences

(Nasdaq: KLTR), the Agentic Digital Experience company, today announced the open-source release of a suite of AI agent skills ...
Decrypt

You Installed Hermes. Now Make It Look Better Than ChatGPT or Claude

The terminal is fine. But if you actually want to live in your Hermes agent, here are the four best GUIs the community has ...
The Caledonian-RecordOpinion

CMS EXPOSED: The "Workaround Doctrine" - How Matt Zorn's Legal CMS Hemp Strategy Undermines the FDA

Matthew C. Zorn previously argued that federal regulators determine "accepted medical use" through the FDA approval framework ...
The Caledonian-Record

The Archalos Fund Announces Research Framework Focused on Overlooked Qualitative Data in ...

The Archalos Fund announced its proprietary research framework designed to address a critical gap in traditional investment ...

Rays' vote on Hillsborough stadium funding once again delayed

The Rays say they are still working toward a May vote on the framework for county funding for a $2.3 billion stadium.
Indianapolis Business Journal

City-County Council asks for pause in data center approvals, denies Martindale-Brightwood appeal

The Indianapolis City-County Council passed a proposal Monday night that asks the city's development commission to hold off ...
ADTmag

Salesforce Opens Beta for React-Based App Development on Its Platform

Salesforce is opening its platform to React developers. The Multi-Framework beta lets developers build native Salesforce apps with React while using Salesforce authentication, security, governance, ...
The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
SecurityWeek

SAP NPM Packages Targeted in Supply Chain Attack

Four SAP NPM packages compromised in the Mini Shai-Hulud supply chain attack trigger a Bun runtime to install an information ...
The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.