The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were ...

A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...

Isn’t there some claim events come in threes? After the extremely rare leak of the iOS Coruna exploit chain recently, now we have details from Google on a second significant exploit in the ...

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...

The open-source tool promises hands-free automation, but users may find it costly, complex, and less practical than expected.

So, you want to get into Python coding online, huh? It’s a pretty popular language, and luckily, there are tons of tools out ...

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...

On the morning of March 24, 2026, tens of thousands of software developers working on AI applications were unknowingly exposed to malware.

Google is introducing an advanced flow for Android users to sideload unverified apps, which includes a mandatory reboot and a ...

A malicious Python package masquerading as a legitimate Telegram development tool has been identified as a vehicle for remote code execution attacks, raising concerns about supply chain security ...

A large-scale GlassWorm malware campaign targeting developer platforms appears to be significantly more extensive and ...