GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across developer systems.

OpenAI to acquire Astral, bringing Python tools like uv, Ruff, and ty into Codex as it moves from code generation to executing full developer workflows.

New Opentrons AI capability lets scientists simulate and visually inspect automated laboratory experiments before robots execute them.

Threat actors have demonstrated just how quickly they operate today after exploiting a critical open source vulnerability ...

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were receiving unauthorized patch updates, all containing the same hidden ...

Ocean Network links idle GPUs with AI workloads through a decentralized compute market and editor-based orchestration tools.

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, worm-like malware across dozens of packages, security firms say. Named CanisterWorm ...

Binny Gill, CEO of Kognitos, describes his company's mission to make "English as code" — a platform that lets businesses write rules for AI in plain language and have them execute deterministically, ...

Something else to worry about.

An undefined Chinese-speaking actor wields a combo of custom malware, open source tools, and LOTL binaries against Windows ...