A malicious Hugging Face repository that reached the platform's trending list impersonated OpenAI's "Privacy Filter" project ...

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

The terminal is fine. But if you actually want to live in your Hermes agent, here are the four best GUIs the community has ...

Open WebUI has been getting some great updates, and it's a lot better than ChatGPT's web interface at this point.

A new report from ReversingLabs identified a new tactic by North Korean hackers: feeding malicious code to the AI systems ...

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.

A 6MB editor quietly replacing tools that cost ten times more.

With model devs pushing more aggressive rate limits, raising prices, or even abandoning subscriptions for usage-based pricing ...

ESET researchers have investigated an ongoing attack by the ScarCruft APT group that targets the Yanbian region via ...

Structured data capture in Revvity Signals One turns lab data into searchable, auditable records for real-time analytics and ...

A malicious npm dependency slipped into an AI-assisted crypto trading project has exposed how automated coding tools can be manipulated into importing software that steals credentials, wallet data and ...

SAS is expanding Viya with Viya Copilot, an MCP Server, and the Agentic AI Accelerator for managed, production-ready agentic ...