Supply chain attacks feel like they're becoming more and more common.

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude ...

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain.

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

No more fighting an endless article backlog.

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching ...

The open-source tool promises hands-free automation, but users may find it costly, complex, and less practical than expected.

You don't need the newest GPUs to save money on AI; simple tweaks like "smoke tests" and fixing data bottlenecks can slash ...

A team of Baldur's Gate 3 modders going by Deathbringer's Reign are working on remaking Baldur's Gate 1 as a custom campaign.

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...