Supply chain attacks feel like they're becoming more and more common.

Anthropic exposed Claude Code source on npm, revealing internal architecture, hidden features, model codenames, and fresh ...

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...

A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes ...

OpenAI acquires Python toolmaker Astral to boost its AI development ecosystem. Discover how this strategic move enhances high ...

Isn’t there some claim events come in threes? After the extremely rare leak of the iOS Coruna exploit chain recently, now we have details from Google on a second significant exploit in the ...

New AI-powered scanner -- who-touched-my-packages -- detects zero-day malicious packages and credential exfiltration in seconds BOSTON, March 26, 2026 /PRNewswire/ -- Point Wild, a leading global ...

The incident has been described as one of the most significant code leaks in recent times, involving the exposure of Claude ...

Truelist releases 20+ free, open-source SDKs and framework integrations for email validation — Node, Python, React, ...

The open-source tool promises hands-free automation, but users may find it costly, complex, and less practical than expected.