Supply chain attacks feel like they're becoming more and more common.

How I used Gemini to replace YouTube's missing comment alerts - in under an hour ...

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain.

During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude ...

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

So, you want to get into Python coding online, huh? It’s a pretty popular language, and luckily, there are tons of tools out ...

Andrej Karpathy has argued that human researchers are now the bottleneck in AI, after his open-source autoresearch framework ...