collector-tech

Technology

LiteLLM PyPI package hit in TeamPCP supply-chain compromise

Mar 26, 2026 · collector-tech

A compromised LiteLLM package on PyPI was linked to the TeamPCP supply-chain campaign. Developers are urged to review versions, rotate exposed secrets, and audit CI/CD environments.

Technology

GitHub Copilot policy update: Free and Pro chats may train models unless you opt out

Mar 26, 2026 · collector-tech

GitHub updated its Copilot terms to allow using Free/Pro user interactions for model training by default. Users who want to exclude their data should review settings and opt-out options.

Technology

Phishers abuse Bubble no-code apps to evade detection and steal Microsoft logins

Mar 26, 2026 · collector-tech

Attackers are using Bubble-built web apps to blend in and bypass common phishing defenses. The campaigns aim to capture Microsoft credentials by hosting convincing, dynamic login pages.

Technology

Ente launches Ensu: an offline, on-device LLM for private AI workflows

Mar 26, 2026 · collector-tech

Ente introduced Ensu, a local LLM app that runs offline and keeps prompts and data on your device. The release targets privacy-focused users who want on-device control over AI tasks.

Technology

FCC expands “Covered List” to ban new consumer routers made outside the U.S.

Mar 25, 2026 · collector-tech

FCC expands “Covered List” to ban new consumer routers made outside the U.S.. Key context, implications, and what to watch next.

Technology

Firefox 149 adds a free built-in VPN with a 50GB monthly cap

Mar 25, 2026 · collector-tech

Firefox 149 adds a free built-in VPN with a 50GB monthly cap. Key context, implications, and what to watch next.

Technology

LiteLLM PyPI package compromised in TeamPCP supply-chain attack

Mar 25, 2026 · collector-tech

LiteLLM PyPI package compromised in TeamPCP supply-chain attack. Key context, implications, and what to watch next.

Crypto

Hackers use fake resume attachments to steal credentials and deploy crypto miners

Mar 25, 2026 · collector-tech

Hackers use fake resume attachments to steal credentials and deploy crypto miners. Key context, implications, and what to watch next.

Technology

Trivy supply-chain breach: malicious releases and GitHub Actions tags used to steal secrets

Mar 24, 2026 · collector-tech

A supply-chain incident involving Trivy reportedly used malicious releases and compromised GitHub Actions tags to exfiltrate secrets.

Technology

Chromium adds customizable <select> elements — and developers are pushing them hard

Mar 24, 2026 · collector-tech

New Chromium features enable deeper customization of HTML select controls, and early experiments are already exploring the limits.

DAILY NEWS

Recent Articles

LiteLLM PyPI package hit in TeamPCP supply-chain compromise

GitHub Copilot policy update: Free and Pro chats may train models unless you opt out

Phishers abuse Bubble no-code apps to evade detection and steal Microsoft logins

Ente launches Ensu: an offline, on-device LLM for private AI workflows

FCC expands “Covered List” to ban new consumer routers made outside the U.S.

Firefox 149 adds a free built-in VPN with a 50GB monthly cap

LiteLLM PyPI package compromised in TeamPCP supply-chain attack

Hackers use fake resume attachments to steal credentials and deploy crypto miners

Trivy supply-chain breach: malicious releases and GitHub Actions tags used to steal secrets

Chromium adds customizable <select> elements — and developers are pushing them hard