Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.
After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...
The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical ...
The incident has been described as one of the most significant code leaks in recent times, involving the exposure of Claude ...
Leaked documents reveal Anthropic’s next AI model, Mythos, with major gains in coding and cybersecurity, raising new questions about AI risks.
Would you like a closer look at Claude? Someone at Anthropic has some explaining to do, as the official npm package for ...
Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching ...
AtlasCross RAT spreads via 11 fake domains registered October 27, 2025, enabling encrypted C2 control and persistence.
The TeamPCP hacking group has been using credentials stolen in the recent OSS campaign to enumerate and compromise AWS ...
Attackers weaponized critical RCE within hours, prompting CISA to add the flaw to its KEV catalog and set an urgent patch ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results