Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

Among the wildest revelations in Claude Code's recent leak is that the AI coding tool is scouring user inputs for signs of ...

On X, Shou linked to a zip file with the leaked code. He is the CTO of Fuzzland and a dropout of the UC Berkeley Ph.D.

Wasm, PGlite, OPFS, and other new tech bring robust data storage to the browser, Electrobun brings Bun to desktop apps, ...

An attack on the open-source library for connecting to LLMs has apparently occurred, allowing two compromised packages to ...

Sigrid Jin woke up to chaos and shipped "Claw Code" by breakfast. Here's everything it taught the world in 24 hours.

A newly discovered attack sandbags Apple users into hacking themselves. Here’s what all Mac users need to know.

It's a solved problem, but I actually prefer a simple web UI.

A newly discovered attack sandbags Apple users into hacking themselves. Here’s what all Mac users need to know.

SystemRescue 13.00 is here. The Linux distribution for administrators brings a new LTS kernel and updated file system tools.

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...