LiteLLM Supply-chain Compromise by TeamPCP

The UK’s cyber security chief urges a “full court press” against threats. RSAC highlights. The U.S. State Department has launched a Bureau of Emerging Threats. The TeamPCP cybercriminal group targets an open source library. TP-Link patches multiple router vulnerabilities. A critical vulnerability hits Windchill and FlexPLM platforms. A phishing campaign impersonates Palo Alto Networks recruiters. Malicious Chrome extensions are harvesting users’ conversations with AI tools. Intern Kevin files his latest report from the RSAC show floor. Your “private” zoom call may already have a podcast deal. 

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest aka Intern Kevin

Intern Kevin joins us from the floor at RSAC 2026. By day, he’s Global Director of Cybersecurity Startups at Microsoft for Startups, but this week, Kevin Magee is trolling the floor at RSAC to get the pulse of what is really going on in San Francisco. Kevin caught up with Dale Hoak, CISO at RegScale, David DellaPelle, CEO at Dune Security, and Jason Williams, Senior Director Global Solutions Architecture at Arms Cyber. 

Selected Reading

UK cyber chief urges ‘full court press’ to counter rising cyber threats (The Record)

Operation Henhouse Nets Over 500 Arrests in UK Fraud Crackdown (Infosecurity Magazine)

State Department launches effort to counter cyberattacks, AI risks from Iran, others (ABC News)

LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks (Help Net Security)

TP-Link warns users to patch critical router auth bypass flaw (Bleeping Computer)

PTC warns of imminent threat from critical Windchill, FlexPLM RCE bug (Bleeping Computer)

Palo Alto Networks Phishing Scam Targets Professionals (TechNadu)

Experts Sound Alarm Over “Prompt Poaching” Browser Extensions (Infosecurity Magazine)

This Company Is Secretly Turning Your Zoom Meetings into AI Podcasts (404 Media)

Share your feedback.

What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show.  

Want to hear your company in the show?

N2K CyberWire helps you reach the industry’s most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com.

The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

Learn more about your ad choices. Visit megaphone.fm/adchoices