Indirect prompt injection attacks are now draining cryptocurrency from AI agents in production. Zscaler ThreatLabz documented ...
New plaintiffs in a lawsuit against Elon Musk's SpaceXAI and Stability AI say the companies' AI tools were used to make ...
Malicious packages on the Node Package Manager (npm) and the Python Package Index (PyPI) delivered stealer malware to ...
According to Socket, malicious payment SDK packages on npm and PyPI are harvesting developer credentials and CI/CD ...
ESET Research has released its H1 2026 Threat Report with statistics from December 2025 through May 2026.ClickFix – a social engineering ...
Armored Likho BusySnake Stealer, a Python-based infostealer first disclosed by Kaspersky, is actively targeting government ...
The former majority owner of TikTok has quietly continued to court filmmakers, independent artists and executives who are ...
AI-generated fake receipts are making expense fraud cheaper, easier, and harder to detect, forcing companies to rethink how ...
Software developers across close to 100 organisations have been targeted by a likely North Korea-linked hacking operation that used fake recruitment and code-review tasks to steal cryptocurrency, ...
Use left and right arrow keys to seek audio. Anthropic has accused Chinese tech giant Alibaba of carrying out the largest known distillation attack on the company to date. In a letter dated June 10 ...
A flaw in the Google Cloud Vertex AI SDK for Python let an attacker with no access to a victim's project hijack the victim's machine learning model upload and run code inside Google's serving ...
The North Korean state-sponsored hacking group known as ScarCruft (aka APT37) has been observed using spear-phishing messages impersonating Microsoft Account security notifications to deliver a new ...