GlassWorm poisoned 300 GitHub repositories since 2025, enabling supply chain attacks against developers and organizations.
An industry effort involving CrowdStrike, Google and the Shadowserver Foundation has led to the disruption of the Glassworm ...
Millions of AI agents and tools around the world have been imperiled by a critical vulnerability that can allow hackers to ...
TrapDoor spread 34 malicious packages across npm, PyPI, and Crates.io, stealing developer credentials and enabling persistence.
The four C&C channels used by GlassWorm, the botnet targeting open source software developers, have been disrupted.
With Flash GA, the company is attempting to transition from being a provider of raw compute to becoming the essential orchestration layer for the AI-first cloud.
Fireship on MSN
New RAT discovered in popular Axios library
A severe security breach has been identified in the Axios library, affecting over 100 million downloads. Hackers uploaded ...
A security researcher published six vulnerabilities in llama.cpp's model-file parser to the oss-security mailing list on May 15, 2026 — and none of them carry an assigned CVE number, meaning standard ...
A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to ...
Red Hat, the world's leading provider of open-source solutions, today announced expanded capabilities across its developer portfolio specifically built for the requirements of AI agents. Through the ...
A coordinated malware campaign known as TrapDoor has hit software ecosystems widely used by crypto and blockchain developers.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results