The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

JP Morgan Chase engineers Luis Albinati and Surabhi Mahajan argued that multi-cloud complexity can't be solved with ...

Jozu, the AI assurance company behind KitOps, a CNCF project with more than 240,000 downloads, today announced the launch of Jozu Agent Guard, a zero-trust AI runtime that executes agents, models, and ...

The infamous GlassWorm malware has infected dozens more Open VSX software packages, according to new research.

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.

H2O.ai, a pioneer in sovereign AI and the world’s leading agentic, highly accurate predictive AI company, today announced its ...

DRILLAPP JavaScript backdoor targets Ukraine in Feb 2026, abusing Edge debugging features to spy via camera, microphone, and ...

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

Google is pushing an emergency patch for a zero-day vulnerability that has been exploited in the wild, and a second zero-day has been identified and is expected to be fixed in a future update.

Cloud attacks are getting faster and deadlier - here's your best defense plan ...

GitLab exposes abuse of its platform to trick software developers into downloading malicious payloads and finance companies ...