The exploit code was almost too neat. When Google’s Threat Intelligence Group flagged a previously unknown software ...

A tiny Python script triggered a major Linux failure in a way that few users would expect. The incident shows how even small ...

Microsoft Threat Intelligence said attackers placed malicious code inside a Mistral AI download distributed through a Python ...

A North Korean APT has crafted malicious software packages to appeal to AI coding agents, while ‘slopsquatting’ shows the ...

AI lowers attack barriers in 2025, enabling 7M-user breach and faster exploits, increasing scale and impact of cyber threats.

Hundreds of packages across npm and PyPI have been compromised in a new Shai-Hulud supply-chain campaign delivering ...

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...

The company said that it had identified, for the first time, hackers using artificial intelligence to discover an unknown bug ...

Hugging Face hosts 352,000 unsafe model issues. ClawHub's registry contains 341 malicious AI agent skills. The AI supply chain is now the most attractive target in software security.

A stealthy Python-based backdoor framework capable of long-term surveillance and credential theft has been identified ...

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

Google has revealed that it detected and stopped a cyberattack that appears to have been developed with the help of AI. All you need to know.