The popular Python package for monitoring data quality was briefly available as a malicious version. Provider Elementary ...

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

CVE-2026-31431 CVSS 7.8 flaw since 2017 enables root via 732-byte exploit, impacting major Linux distributions.

A routine software update for Anthropic's Claude Code tool accidentally leaked its entire source code, sparking rapid community response. Within hours, a developer rewrote the tool in Python and then ...

Anthropic fixed a significant vulnerability in Claude Code's handling of memories, but experts caution that memory files will ...

A new report from ReversingLabs identified a new tactic by North Korean hackers: feeding malicious code to the AI systems ...

CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...

As unloved as IBM’s PCjr was, with only a one-year production run, it’s hard to complain about the documentation available ...

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

The source code of Anthropic's CLI tool Claude Code was accidentally made publicly accessible via a source map in the npm registry.

Anthropic has exposed Claude Code's source code, with a packaging error triggering a rapid chain reaction across GitHub and the developer community, letting them copy it entirely ...

A single unauthenticated connection gives attackers a full shell; credential theft observed in under three minutes on honeypot servers.