Supply chain attacks feel like they're becoming more and more common.

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

Microsoft will invest $10 billion in Japan through 2029 to expand AI infrastructure, deepen cybersecurity ties, and train ...

A critical security vulnerability in Langflow allows attackers to push and execute malicious code on PCs. A security patch is ...

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...

Two versions of LiteLLM, an open source interface for accessing multiple large language models, have been removed from the ...

AI chatbots make it possible for people who can’t code to build apps, sites and tools. But it’s decidedly problematic.

CERT-EU attributed a 92 GB data breach at the European Commission to TeamPCP, which compromised the Trivy security scanner in ...

Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...

GlassWorm uses Solana and Google Calendar dead drops to deliver RAT stealing browser data and crypto wallets, impacting ...

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...

OpenClaw, an open-source AI agent with a red lobster logo, has sparked a nationwide craze in China in early 2026.Unlike ...