For a short window on Tuesday, two versions of a popular open-source project from LiteLLM contained malware, designed to steal all sorts of login credentials. A researcher discovered it after it ...

A government-grade iOS exploit kit called DarkSword has been leaked on GitHub, putting hundreds of millions of iPhones ...

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

Cloud attacks are getting faster and deadlier - here's your best defense plan ...

Nvidia Is Building an Open-Source Platform for Enterprise AI Agents. Wired reported on March 9 that Nvidia has been quietly pitching an open-source enterprise AI agent platform called NemoClaw to ...

A threat actor known as UNC6426 leveraged keys stolen following the supply chain compromise of the nx npm package last year to completely breach a victim's cloud environment within a span of 72 hours.

Cybersecurity researchers have discovered five malicious Rust crates that masquerade as time-related utilities to transmit .env file data to the threat actors. The Rust packages, published to ...

Nvidia's reported platform will allow companies to dispatch AI agents to perform tasks for their own employees. The platform is expected to include security and privacy tools. The report comes as ...

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.

Google’s threat intelligence researchers have identified a sophisticated exploit kit targeting iPhones that was first used by a commercial surveillance vendor’s customer before being repurposed by a ...

An 18-year-old Pennsylvania high school student was arrested Friday after authorities accused him of running a massive “catfishing” and “sextortion” scheme that involved more than 20 underage victims.