The CEMU development team has made an urgent security announcement, revealing that compromised files had been spread via its emulator builds by a "pro-Russian threat actor." ...

CRPx0 is a complex, stealthy malware campaign that targets macOS and Windows systems, and appears to have Linux capabilities ...

An attacker poisoned 84 TanStack npm versions across 42 packages, stealing GitHub OIDC tokens and cloud keys while planting a ...

Google says attackers are using AI for zero-day research, malware development, reconnaissance, and access to premium AI tools ...

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...

Onassis & PRX The gods are trading their lightning bolts for lyric sheets as the award-winning podcast Live from Mount ...

Report reveals alarming security gaps in AI agents. Capsule Security analysis finds 402,599 unique AI agent hosts are reachable from the public internet. Worse, most are deployed without default ...

The 2FA bypass exploit stemmed from a faulty trust assumption, providing evidence of AI reasoning that can discover ...

Between May 6 and 7, it was dangerous to install JDownloader from alternative links on the site.

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...

Fake OpenAI Privacy Filter repo hits #1 on Hugging Face with 244K downloads deploying Sefirah infostealer malware.

Fake OpenAI Privacy Filter hit #1 on Hugging Face with 244,000 downloads, spreading infostealer malware to Windows users.