A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler.

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

Transformer Weekly: New Claude Mythos model details leaked, Anthropic wins injunction against DoD blacklisting and ...

JetBrains预览了用于智能代理软件开发的Central平台，但将停用Code With Me人工配对编程功能。Central是一个智能代理软件开发系统，包含治理、运行代理的云基础设施以及跨存储库和项目的共享上下文。该平台将在今年第二季度开放早期访问。调查显示90%的开发者已使用AI，22%使用AI编程代理。公司面临传统IDE业务威胁，需要在AI发展与保持核心客户之间找到平衡。

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

On the morning of March 24, 2026, tens of thousands of software developers working on AI applications were unknowingly exposed to malware.

Dev tooling biz JetBrains has previewed Central for agentic AI software development but will retire the Code With Me human ...

Andrej Karpathy, the former Tesla AI director and OpenAI cofounder, is calling a recent Python package attack \"software ...

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...

The compromised packages, linked to the Trivy breach, executed a three‑stage payload targeting AWS, GCP, Azure, Kubernetes ...