Supply chain attacks feel like they're becoming more and more common.

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

DNS flaw in Amazon Bedrock and critical AI vulnerabilities expose data and enable RCE, risking breaches and infrastructure ...

Microsoft’s geospatial data service is designed to help research projects using public satellite and sensor information.

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

Intuit lost 42% of its market cap as AI agents threaten to replace QuickBooks and TurboTax. Here's what the company says ...

A phishing campaign targeting healthcare, government, hospitality, and education sectors uses several evasion techniques to ...

You don't need to be a developer to build your own crypto bot. Here's how traders are doing it in 30 minutes, for free.

GlassWorm attack uses stolen GitHub tokens to inject malware into Python repositories, exposing developers to supply chain ...

Amazon wins an early court order against Perplexity, halting parts of Comet’s AI shopping push and teeing up a rapid Ninth ...