SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
CSOonline

‘Silent’ Google API key change exposed Gemini AI data

Google Cloud API keys, normally used as simple billing identifiers for APIs such as Maps or YouTube, could be scraped from websites to give access to private Gemini AI project data, researchers from ...
Windows Report

Hackers Could Exploit Exposed Google API Keys to Access Gemini AI

Google is facing renewed security scrutiny after researchers revealed that publicly exposed API keys can be abused to access Gemini AI services. The issue centers on Google API keys embedded in client ...
Yahoo

‘Almost impossible to make’: Worcester brewery flips the script on non-alcoholic beer

Add Yahoo as a preferred source to see more of our stories on Google. WORCESTER — How does a brewery known for its high-alcohol offerings get in on the rise of non-alcoholic beers? By “imperializing” ...
Naples Daily News

SleepScriptMD Offers Non-Addictive Sleep Treatment Through Text-Based Care

SleepScriptMD offers board-certified physician-reviewed, non-addictive sleep prescriptions online — no office visits required — serving patients nationwide ...
Bleeping Computer

The Double-Edged Sword of Non-Human Identities

In a sweeping analysis conducted in late 2025, Flare researchers uncovered more than 10,000 Docker Hub container images leaking secrets (including production API keys, cloud tokens, CI/CD credentials, ...