Aqua Security’s Trivy vulnerability scanner compromise is trickling down ...

During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude (Opus 4.5) and a third-party asset management platform. The idea is simple: ...

Microsoft’s geospatial data service is designed to help research projects using public satellite and sensor information.

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes configs, SSH keys, and automation pipelines before being removed.

The primary condition for use is the technical readiness of an organization’s hardware and sandbox environment.

OpenAI launches GPT-5.4 mini and nano, smaller models built for lower-cost coding, multimodal tasks, subagents, and ...

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of credential-harvesting malware to thousands of AI developers.

Learn how builders at the Agentic Commerce on Arc AI hackathon are turning autonomous AI finance into production-ready systems using Arc L1 and Circle infrastructure.

ThreatsDay Bulletin covers stealthy attack trends, evolving phishing tactics, supply chain risks, and how familiar tools are ...