SVG phishing email attacks are bypassing enterprise email security gateways by hiding JavaScript inside image files and ...

Nearly 2,000 WordPress websites were infected with malware that relies on Steam Community profile comments to hide command-and-control (C2) data.

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.

Perplexity launches Bumblebee: How its new read-only dev scanner differs from Chainguard ...

Compare top AI app builders for prototyping, mobile apps, internal tools, backend depth, security, pricing, and code ...

OpenAI is telling every Mac user running its ChatGPT or Codex desktop app to update right now. The urgency traces back to a supply-chain attack on a popular open-source JavaScript toolkit called ...

North Korea-linked hackers have upgraded the InvisibleFerret malware to bypass script-based security tools, converting its Python code into compiled modules that are harder for defenders to inspect ...

From quick keyboard shortcuts to AI-powered OCR and GIF creation, Windows 11 includes far more screenshot tools than most people realize.

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...

Large language models are not just getting smarter, they’re becoming more specialized. Turn to these models for deep knowledge in medicine, law, finance, and other areas of expertise.

A new front has opened in the U.S.-China competition in artificial intelligence: open-weight, local AI models. Until recently, the most capable AI models were too big and too costly to run anywhere ...

Socket raises $60M to expand AI-driven software supply chain security and protect developers from cyber threats worldwide.