During an investigation into exposed OpenWebUI servers, the Cybernews research team identified a malicious campaign targeting vulnerable OpenWebUI servers with cryptocurrency miners and Info Stealers.

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

DNS flaw in Amazon Bedrock and critical AI vulnerabilities expose data and enable RCE, risking breaches and infrastructure ...

GlassWorm attack uses stolen GitHub tokens to inject malware into Python repositories, exposing developers to supply chain risks.

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.

Microsoft Authenticator Flaw on Android, iOS Could Leak Login Codes for Millions Your email has been sent A newly discovered vulnerability in Microsoft Authenticator could expose sensitive login codes ...

Manufact, a Y Combinator startup, raised $6.3 million to build open-source tools and cloud infrastructure for the Model Context Protocol (MCP), the fast-growing standard backed by Anthropic and OpenAI ...

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

Anthropic launches Claude Code Review, a new feature that uses AI agents to catch coding mistakes and flag risky changes before software ships.

In a preview stage, Code Review launches a team of agents that look for bugs in parallel, verify them to filter out false positives, and rank them by severity.

The ‘Getting Started’ section is like the quick-start guide for a new gadget. It gives you the most important first steps, ...