Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.

Stop throwing money at GPUs for unoptimized models; using smart shortcuts like fine-tuning and quantization can slash your ...

Hugging Face hosts 352,000 unsafe model issues. ClawHub's registry contains 341 malicious AI agent skills. The AI supply chain is now the most attractive target in software security.

On April 30, 2026, someone slipped credential-stealing malware into two freshly published versions of PyTorch Lightning, one ...

Every time a developer types npm install, they are placing a bet that the package they are pulling into their project is not ...

After the CopyFail vulnerability gave root access from any user on almost all distributions last week, this week we’ve got DirtyFrag. This chains the vulnerability in CopyFail (xfrm-ESP) and ...

ESET researchers have investigated an ongoing attack by the ScarCruft APT group that targets the Yanbian region via ...

France is replacing 2.5 million Windows desktops with Linux - and I mapped out its new stack ...

Weekly cybersecurity recap covering zero-days, malware, phishing, supply chain attacks, cloud threats, AI security risks, and ...

OpenMythos is a from-scratch attempt to reconstruct the architecture behind Claude Mythos, the model Anthropic refuses to ...

Using visual prompts helped improve glaucoma detection by a large language model, according to a poster presentation at the ...

Artificial intelligence tools are making it faster than ever to reproduce creative work. Does copyright even matter anymore? By Meaghan Tobin Reporting from Taipei, Taiwan Sigrid Jin was waiting to ...