Chainguard's new Athena coalition uses AI to fix open-source flaws - before attackers exploit them ...

Microsoft details AutoJack exploit chain targeting AutoGen Studio MCP WebSocket in pre-release builds, enabling ...

Mastra npm packages added easy-day-js malware, exposing developer systems and CI runners to infostealer risks.

CVE-2026-48907 in the Joomla JCE plugin lets unauthenticated attackers drop PHP web shells with a single crafted request.

Attackers hijacked over 1,500 packages in Arch Linux's AUR to plant a credential stealer. The official repos are safe, but the trust model took the hit.

An AUR supply chain attack compromised more than 400 Arch Linux packages from 11 June 2026, planting a Rust credential ...

A new year has arrived and organizers for the 2026 Cincinnati Open are already preparing for the upcoming tournament.This year’s tournament will bring the best tennis players in the world to the ...

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, ...

Cyberattacks once moved at the pace of human hackers. Even with scripts, the manual effort that malicious actors needed to navigate networks constrained their attacks. Today, threat actors use agentic ...