Supply chain attacks feel like they're becoming more and more common.

A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...

Explore Andrej Karpathy’s Autoresearch project, how it automates model experiments on a single GPU, why program.md matters, ...

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...

Discover the top data engineering tools that will revolutionize DevOps teams in 2026. Explore cloud-native platforms designed ...

A newly documented BlankGrabber infection chain is using a bogus “certificate” loader to disguise a multi-stage Windows compromise, adding another layer of deception to a commodity stealer already ...

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...

Andrej Karpathy has argued that human researchers are now the bottleneck in AI, after his open-source autoresearch framework ...

Gesture control robotics replaces traditional buttons and joysticks with natural hand movements. This approach improves user ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...