A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade ...

Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...

Meta’s Rust-powered linter and type checker for Python pairs blazing speed with advanced and innovative features.

Python scripts were used to test malware against endpoint detection and response agents from Sophos, CrowdStrike, and Windows ...

Threat actors have struck the software supply chain yet again, this time hitting the Python Package Index (PyPI) with Mini Shai-Hulud in an attempt to spread poisoned code. In the latest campaign, ...

Weekly ThreatsDay recap: old bugs, fake tools, shady payload tricks, AI mishaps, and the usual reminder that the internet is ...

Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...

If you haven't seen the latest Java developer productivity report from Perforce, you should check it out. Written by Perforce CTO Rod Cope and developer tools exec Jeff Michael, the "2025 Java ...

A threat actor has been observed using AI coding tools to develop and refine malware designed to slip past endpoint detection ...

Anthropic’s AI turned Firefox and Windows software patches into exploits within hours, including one Windows proof-of-concept ...

Riot Games has stepped in to squash rumors that it is using its Vanguard anti-cheat to "brick" the PCs of players who get caught cheating in its games. Rumors that the League of Legends and Valorant ...