Four vulnerabilities in CrewAI could be chained together via prompt injection for sandbox escape, remote code execution, and ...

AI recruiting startup Mercor confirms supply chain attack via LiteLLM library compromise. Hackers claim 4TB of data including ...

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching ...

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

Anthropic is scrambling to contain the leak, but the AI coding agent is spreading far and wide and being picked apart.

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

The incident has been described as one of the most significant code leaks in recent times, involving the exposure of Claude ...

Anthropic, the flagship AI company, has inadvertently exposed the source code for its major CLI tool Claude Code. It has ...

How I used Gemini to replace YouTube's missing comment alerts - in under an hour ...

Anthropic is trying to remove details about its coding agent from GitHub, but programmers are converting the code into ...

I can't stress enough how important it is to take these tidbits with a healthy pinch of salt. But if Arion Kurtaj is right, gamers worldwide might get more bad news on the GTA 6 front. Kurtaj is known ...