Preview of new companion app allows developers to run multiple agent sessions in parallel across multiple repos and iterate ...

Adobe Reader zero-day exploited since Dec 2025 via malicious PDFs, enabling data theft and potential RCE, prompting urgent ...

The AppsFlyer Web SDK was temporarily hijacked this week with malicious code used to steal cryptocurrency in a supply-chain attack. The payload can intercept cryptocurrency wallet addresses entered on ...

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...

Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.

The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

Claude Code Source Code Leak Anthropic: Analysts believe the leak could impact the company’s reputation, especially as it is ...

Iran-linked actors target U.S. PLCs using Dropbear and SSH access, disrupting OT systems across sectors and escalating cyber ...

The consensus among early adopters is that Anthropic has successfully internalized the most desirable features of the ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

AI breakthroughs, zero-day exploits, and layoffs reveal how this week’s tech news pivots on fast-moving artificial ...