The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

Supply chain attacks feel like they're becoming more and more common.

Did you know formatting your AI prompts with Markdown drains your token limit? Learn how Markdown impacts LLM costs and how to optimize ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

The TeamPCP hacking group has been using credentials stolen in the recent OSS campaign to enumerate and compromise AWS ...

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...

The threat group's shift to speedy attacks on AWS, Azure, and SaaS instances shows organizations need to respond quickly to ...

Anthropic leaked 512,000 lines of Claude Code source via npm, its second security lapse in days as the $350B startup eyes a ...

Google unveils Gemma 4 under an Apache 2.0 license, boosting enterprise adoption of efficient, multimodal AI models across ...

Aqua Security’s Trivy vulnerability scanner compromise is trickling down ...

I’m happy to be the token Scottish boy in any sketch, says SNL UK’s Larry Dean - The Scottish stand-up says the sketches will ...