Microsoft Threat Intelligence said attackers placed malicious code inside a Mistral AI download distributed through a Python ...

Fake OpenAI Privacy Filter hit #1 on Hugging Face with 244,000 downloads, spreading infostealer malware to Windows users.

A malicious version of the PyTorch Lightning package published on the Python Package Index (PyPI) delivers a ...

A fake repo impersonating the OpenAI Privacy Filter model racked up 244,000 downloads in under 18 hours before Hugging Face ...

The NHS Couch to 5k app is celebrating its 10-year anniversary having reached more than 8 million downloads.

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...

Services zur Restaurantsuche und Reservierung, betrieben von Kakaku.com, Inc., hat bekannt gegeben, dass seine mehrsprachige ...

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...

It sounds like science fiction, but that’s how one company is trying to tackle a real workforce challenge in Canada ...

The attacks compromise aerospace and drone firms' systems to exfiltrate GIS files, terrain models, and GPS data to gain a clear picture of analysts' intel.

A North Korean APT has crafted malicious software packages to appeal to AI coding agents, while ‘slopsquatting’ shows the ...

Recordly is a desktop app for recording and editing screen captures with motion-driven presentation tools built in. Recordly has emerged as one of the most compelling free alternatives to paid tools ...