Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.

On Friday, OpenAI engineer Michael Bolin published a detailed technical breakdown of how the company’s Codex CLI coding agent ...

OpenAI is releasing a new app called Prism today, and it hopes it does for science what coding agents like Claude Code did ...

The problem of antibiotic-resistant bacteria has many health experts worried. As disease-causing bacteria adapt to some of ...

Handing your computing tasks over to a cute AI crustacean might be intriguing - but you should consider these security risks before doing so.

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.

Koi security researchers found that when NPM installs a dependency from a Git repository, configuration files such as a ...

A source trapped inside an industrial-scale scamming operation contacted me, determined to expose his captors’ crimes—and ...

By AJ Vicens Jan 29 (Reuters) - Hackers and other criminals can easily commandeer computers operating open-source large language models outside the guardrails and constraints of the major ...

Cryptographic obfuscation and functional encryption have emerged as pivotal tools in contemporary cryptography, offering novel ways to secure software and data while preserving functionality. At its ...