Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

On X, Shou linked to a zip file with the leaked code. He is the CTO of Fuzzland and a dropout of the UC Berkeley Ph.D.

Among the wildest revelations in Claude Code's recent leak is that the AI coding tool is scouring user inputs for signs of ...

An attack on the open-source library for connecting to LLMs has apparently occurred, allowing two compromised packages to ...

Wasm, PGlite, OPFS, and other new tech bring robust data storage to the browser, Electrobun brings Bun to desktop apps, ...

A newly discovered attack sandbags Apple users into hacking themselves. Here’s what all Mac users need to know.

It's a solved problem, but I actually prefer a simple web UI.

A newly discovered attack sandbags Apple users into hacking themselves. Here’s what all Mac users need to know.

SystemRescue 13.00 is here. The Linux distribution for administrators brings a new LTS kernel and updated file system tools.

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ ...