On June 5, 2026, 73 Microsoft GitHub repositories were disabled by GitHub's anti-fraud system. These repositories were found to be compromised by malware that stole authentication credentials when ...
Alibaba's AI research team, Qwen (Tongyi Lab), has announced its AI model, ' Qwen3.7-Plus.' Qwen3.7-Plus has outperformed the Claude Opus 4.6 in some benchmark tests. Qwen3.7-Plus is a multimodal ...
Another massive supply chain attack is spreading. Hundreds of compromised NPM packages are being detected, with hackers using stolen secrets to create over 2,200 public GitHub repositories, all ...
Bitdefender security researchers have discovered that attackers continue to exploit Microsoft HTML Application Host (MSHTA), a legacy utility available by default on Windows systems that can execute ...
Hermes Agent is an open-source, self-improving AI agent framework built by Nous Research — the same lab behind the Hermes, Nomos, and Psyche model families. Launched on February 25, 2026, it ...
The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are becoming a new software supply chain attack vector. A malicious Hugging ...
It was mid-October, peak leaf-peeping season in Hanover, New Hampshire, and Chad Markey was on a rare break between clinical rotations during his last year of medical school. He should have been ...
Over 1,800 developers were affected by the Mini Shai-Hulud supply chain attack that hit the PyPi, NPM, and PHP ecosystems over the past two days. Attributed to the TeamPCP hacking group, the campaign ...
And yet, within the same weeks that developers were racing to deploy OpenClaw, security researchers at Cisco, Palo Alto Networks, and Oasis Security were publishing some of the most alarming AI ...
Agentic AI assistants are showing up in Slack, Teams, WhatsApp, Telegram, Discord—and they’re more than just chatbots. The increasing popularity of open source projects like Clawdbot popularize the ...