DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...

Seeed Studio reBot Arm B601-DM is a fully open-source 6-axis robotic arm (plus a parallel gripper) designed to lower the ...

As AI agents increasingly rely on third-party API routers, criminals are using this dependence to trick users and inject malicious code into their machines.

How mature is your AI agent security? VentureBeat's survey of 108 enterprises maps the gap between monitoring and isolation — ...

OpenAI revoked its macOS signing certificate after a malicious Axios dependency incident on March 31, 2026, preventing ...

An attacker purchased 30+ WordPress plugins on Flippa, planted backdoors that lay dormant for eight months, then activated ...

今週、複数のAIモデルへのリクエストをルーティングするために開発者が使用するオープンソースライブラリLiteLLMがサプライチェーン攻撃を受けた。LiteLLMのインシデント報告書とDatadogによる後の分析によると、悪意あるコードを含む ...

The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize ...

You gotta build a "digital twin" of the mess you're actually going to deploy into, especially with stuff like mcp (model context protocol) where ai agents are talking to data sources in real-time.

Google is rolling out Skills to the Gemini sidebar in Chrome, letting you save any prompt—as simple as "summarize this tab" ...