Morning Overview on MSN

Malicious open-source packages have surged 73% in 2026 according to new research

Every time a developer types npm install, they are placing a bet that the package they are pulling into their project is not ...

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...
Yahoo Finance

Percona Launches Percona Packages to Enable AI-Ready, High-Performance Database Infrastructure

RALEIGH, N.C., Dec. 16, 2025 (GLOBE NEWSWIRE) -- Percona, a leader in enterprise-grade open source database software, support, and services, today announced the launch of Percona Packages, a suite of ...
Bleeping Computer

Malicious ‘SentinelOne’ PyPI package steals data from developers

Threat actors have published a malicious Python package on PyPI, named 'SentinelOne,' that pretends to be the legitimate SDK client for the trusted American cybersecurity firm but, in reality, steals ...