The world’s largest open-source registry, node package manager (npm), has been hit by another fast-moving malware attack, ...

Sometime around the last week of May 2026, attackers uploaded poisoned packages to three of the most widely used software ...

The deal gives Anthropic tighter control over how developers connect Claude to software and business systems as AI vendors ...

The hacker group TeamPCP uploaded two malicious versions of the popular Python library LiteLLM to PyPI. Using a previously compromised version of the vulnerability scanner Trivy, the attackers stole ...

This vibe coding cheat sheet explains how plain-language prompts can build apps fast, plus the planning, testing, and ...

Anthropic has introduced a new feature called Routines for Claude Code, allowing developers to configure automated coding ...

Google reported the first confirmed AI-assisted zero-day exploit, raising new concerns about logic flaws, supply chain risk, ...

Then imagine it replying: "Sorry, the website won't let me in." That's the quiet failure mode behind most AI agents today.

Base creator Jesse Pollak announced on May 13 that the x402 payment protocol now supports batched settlement, in an X post.

Google's GTIG identified the first zero-day exploit developed with AI and stopped a mass exploitation event. The report documents state actors using AI for vulnerability research and autonomous ...

While previous assessments categorized AI-assisted cyberattacks as experimental, current data suggests generative AI is now a mature, industrialized component of offensive operations.

An attacker poisoned 84 TanStack npm versions across 42 packages, stealing GitHub OIDC tokens and cloud keys while planting a ...