GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP ...

A security researcher published six vulnerabilities in llama.cpp's model-file parser to the oss-security mailing list on May 15, 2026 — and none of them carry an assigned CVE number, meaning standard ...

A multi-stage attack on Linux devices began with an exposed F5 BIG-IP edge appliance and pivoted to an internal Confluence ...

Attackers are increasingly abusing Microsoft’s legacy MSHTA utility to silently deliver malware, stealers, and persistent ...

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...

Microsoft adds Grok 4.3 to Foundry with a 200K context window, native productivity tools, and Azure safety protections.

Stolen credentials produced valid Sigstore certificates, clearing 633 malicious npm packages — one of seven developer tool ...

Face swap on your Mac without cloud uploads or complicated setup. This 2026 guide explores how VidMage brings fast, local AI ...

A free, self-hosted voice-cloning studio built by Jamie Pine, the Canadian developer behind the Spacedrive file manager, has ...

New research from a trio of Microsoft researchers reveals that LLMs ‘introduce substantial errors when editing work documents.’ ...

A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate ...

Google says attackers are using AI for zero-day research, malware development, reconnaissance, and access to premium AI tools.