TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...

A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...

Anthropic's Claude Code has surpassed 20 million GitHub commits, but 90% of output has landed in repos with fewer than two ...

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

You don't need to be a developer to build your own crypto bot. Here's how traders are doing it in 30 minutes, for free.

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ ...

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching ...

Chainguard is expanding beyond open-source security to protect open-core software, AI agent skills, and GitHub Actions.

Independent researcher Simon Willison raises questions about hidden Series A and B rounds, investor windfalls, and whether a ...

Security monitoring platform company Panther Labs Inc. today announced the general availability of its complete AI SOC Platform, a new security operations service where artificial intelligence agents ...

Panther Labs (hereafter just Panther) describes itself as a complete AI security operations centre (SOC) platform that is ...