The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...

Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...

I ditched my terminal for Claude's built-in code executor, and I'm not going back.

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...

Cybersecurity researchers create a five-step exploit chain using over-permissioned roles, secrets discovery, and NHIs to attack a popular low-code service.

AI agent exploited Salesforce sites; 263 objects, 55 Apex methods exposed at one portal, leading to PII and file leaks.

GitHub disabled 73 Microsoft repositories on June 5 after a malicious commit landed in an Azure project, in what researchers described as a supply chain attack aimed at developer workstations and AI ...

米OpenAIは5月29日（現地時間）、Windows向け「Codex」アプリをv26.527へアップデートした。本バージョンの目玉は、Windowsで「Computer Use」が利用できるようになったことだ。 Windows users, ...

米OpenAIは6月2日（現地時間）、「Codex」の新機能を発表した。「Codex」はもともとソフトウェア開発向けに登場したコーディングエージェントだが、現在ではコーディング以外の用途にも広く使われている。そこで、アナリストやマーケター、オペレータ ...

Perplexity launches Bumblebee: How its new read-only dev scanner differs from Chainguard ...