Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

Microsoft plans major WSL improvements in Windows 11 2026, with faster file performance, better networking, and easier setup ...

Axios 1.14.1 and 0.30.4 injected malicious [email protected] after npm compromise on March 31, 2026, deploying ...

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

Supply chain attacks feel like they're becoming more and more common.

ShellGPT makes the terminal user-friendly, saving time by generating commands, automating scripts, and guiding me through tasks.

Cloudflare says dynamically loaded Workers are priced at $0.002 per unique Worker loaded per day, in addition to standard CPU ...

OpenAI announced they are extending the Responses API to make it easier for developer to build agentic workflows, adding ...

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...

During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude ...

On March 19, 2026, a threat actor known as TeamPCP compromised Aqua Security’s Trivy vulnerability scanner – the most widely adopted open-source scanner in the cloud-native ecosystem. The attacker ...

Two versions of the widely used JavaScript library axios were maliciously published on npm on March 31, 2026. A hijacked ...