Supply chain attacks feel like they're becoming more and more common.

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain.

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude ...

No more fighting an endless article backlog.

You don't need the newest GPUs to save money on AI; simple tweaks like "smoke tests" and fixing data bottlenecks can slash ...

An incident of LinkedIn malware means jobseekers and employers need to take more care with their applications and ...

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...

The open-source tool promises hands-free automation, but users may find it costly, complex, and less practical than expected.