Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
Arabian Post

PyPI proxy trap siphons AI prompts

A Python package presented as a privacy-first shortcut to AI models has been unmasked as a supply-chain threat that quietly captures user prompts, leans on a private university service without ...
InfoWorld

Google gives enterprises new controls to manage AI inference costs and reliability

Google has added two new service tiers to the Gemini API that enable enterprise developers to control the cost and ...

Google announces Gemma 4 open AI models, switches to Apache 2.0 license

Like past versions of its open-weight models, Google has designed Gemma 4 to be usable on local machines. That can mean ...