Supply chain attacks feel like they're becoming more and more common.

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain.

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude ...

No more fighting an endless article backlog.

Build your first fully functional, Java-based AI agent using familiar Spring conventions and built-in tools from Spring AI.

An incident of LinkedIn malware means jobseekers and employers need to take more care with their applications and ...

You don't need the newest GPUs to save money on AI; simple tweaks like "smoke tests" and fixing data bottlenecks can slash ...

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...