Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.

IntroductionOn March 12, 2026, Zscaler ThreatLabz discovered a malicious ZIP archive containing military-themed document lures targeting Chinese-speaking individuals. Our analysis of this sample ...

ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian ...

Say “publish this as a website” and your AI agent handles the rest: it builds the file, uploads it, and hands you a ...

GitHub is the most popular web-based, open-source version control system developers use to host their codes. The website provides a platform to collaborate with other programmers on the project easily ...

The compromise of a version of Bitwarden's CLI is connected to the ongoing Checkmarx supply chain campaign, but differences in the operational methods of both incidents are making it difficult to ...

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...

Nearly 2,000 internal files were briefly leaked after ‘human error’, raising fresh security questions at the AI company Anthropic accidentally released part of the internal source code for its ...

North Korean hackers are using fake video calls to steal far more than cryptocurrency, according to a cybersecurity report ...

Claude Code's entire source code has been leaked and the internet is up in arms.

AI chatbots make it possible for people who can’t code to build apps, sites and tools. But it’s decidedly problematic.

Unified AI governance: discover shadow AI, prioritize risk, and reconcile assets into an audit-ready inventory across all ...