The ChromaToast vulnerability can be exploited by forcing the ChromaDB API server to fetch and load maliciously crafted AI ...

A research team at Mohamed bin Zayed University of Artificial Intelligence published a finding in April 2026 that has gained traction in engineering circles for reasons that go beyond its headline ...

Kazuar, a sophisticated malware family attributed to the Russian state actor Secret Blizzard, has been under constant development for years and continues to evolve in support of espionage-focused ...

Phenomenon Studio reveals what SaaS, ERP, and digital product development actually costs in 2026. Real project budgets, ...

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...

A fake repository mimicking OpenAI’s Privacy Filter on Hugging Face accumulated ~244,000 downloads before being removed. It delivered a multi-stage Rust infostealer ...

Fake OpenAI Privacy Filter hit #1 on Hugging Face with 244,000 downloads, spreading infostealer malware to Windows users.

ESP-Claw turns your ESP32 into a full fledged AI agent, with web search and Telegram support.

OX Security confirmed arbitrary command execution on six live platforms and estimates 200,000 MCP servers are exposed. Here's how to audit your deployments.

The post How Escape AI Pentesting Exploited SSRF in LiteLLM appeared first on Escape – Application Security & Offensive Security Blog. At Escape, we routinely test the AI infrastructure that teams ...

Exclusive: The 2025 SXSW hit comes to theaters in May courtesy of Oscilloscope Laboratories. Sometimes, all you want from a documentary is a glimpse at something you’ve never seen before. On that ...

Microsoft announced the first release candidate of .NET 10 is now available with go-live support--ready for production apps. The company said this update brings enhancements across ASP.NET Core, ...