Gemini CLI CVSS 10.0 flaw in versions below 0.39.1 enabled RCE in CI workflows, forcing Google to mandate explicit workspace ...

Four SAP NPM packages compromised in the Mini Shai-Hulud supply chain attack trigger a Bun runtime to install an information ...

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...

With this app, you can reveal hidden files in Finder, clear logs and caches eating your space, batch convert images, and more ...

North Korea's Lazarus Group has launched advanced malware targeting macOS devices. Mach-O Man, as it is called, is designed ...

Mozilla is the latest legacy tech brand to make a play for the enterprise AI market. But the company behind Firefox and ...

Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX ...

Hackers are continuously working on evolving all types of malware to get around protection protocols, keeping them safer from ...

Firefox 150 ships 271 bug fixes found by Claude Mythos Preview. Mozilla says the defects are finite. The UK AI Security Institute says the model can also attack autonomously.

Coding agents are like absent-minded professors, this fixes that gap ...