> TritonInfoSec News
Home / Mar 29, 2026 / Story
0
#6 BleepingComputer general March 27, 2026 at 21:13 UTC

Backdoored Telnyx PyPI package pushes malware hidden in WAV audio

By Bill Toulas

AI Summary

TeamPCP hackers compromised the Telnyx Python package on PyPI, uploading malicious versions 4.87.1 and 4.87.2 on March 27, 2026. The threat actors concealed credential-harvesting malware inside WAV audio files to evade detection in the supply chain attack.

Read full article → https://www.bleepingcomputer.com/news/security/bac…

Relevance score: 83.0/100

# More from March 29

  1. 1
    Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack The Hacker News
  2. 2
    Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug The Hacker News
  3. 3
    CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation The Hacker News
  4. 4
    TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign The Hacker News
  5. 5
    New Infinity Stealer malware grabs macOS data via ClickFix lures BleepingComputer
  6. 7
    Fake VS Code alerts on GitHub spread malware to developers BleepingComputer
  7. 8
    Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits The Hacker News
  8. 9
    China Upgrades the Backdoor It Uses to Spy on Telcos Globally Dark Reading
  9. 10
    LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks The Hacker News