The ChromaToast vulnerability can be exploited by forcing the ChromaDB API server to fetch and load maliciously crafted AI ...
North Korea-linked hackers have upgraded the InvisibleFerret malware to bypass script-based security tools, converting its Python code into compiled modules that are harder for defenders to inspect ...
A multi-stage attack on Linux devices began with an exposed F5 BIG-IP edge appliance and pivoted to an internal Confluence ...
Supply chain attacks with a Dune sci-fi saga branding continue to spread across the open-source ecosystem, with a Microsoft ...
TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...
Mini Shai-Hulud hit 2 OpenAI devices via TanStack, exposing limited credentials and forcing macOS certificate updates by June ...
Google says attackers are using AI for zero-day research, malware development, reconnaissance, and access to premium AI tools ...
Google's GTIG identified the first zero-day exploit developed with AI and stopped a mass exploitation event. The report documents state actors using AI for vulnerability research and autonomous ...
Thousands of software development teams whose CI/CD pipelines depended on LocalStack’s free community edition lost access to ...
Four research teams found the same confused deputy failure in Claude across three surfaces in 48 hours. This audit matrix ...
Agile software development has been around since the 1990s, but didn’t get the name until the famous meeting of 17 renowned ...
May the best coding AI win!
Some results have been hidden because they may be inaccessible to you
Show inaccessible results