GlassWorm poisoned 300 GitHub repositories since 2025, enabling supply chain attacks against developers and organizations.

Codex tokens were exfiltrated via a popular npm package, affecting users since v0.1.82 and enabling persistent account access ...

CrowdStrike, Google and the Shadowserver Foundation worked together to take down a botnet that poisoned over 300 GitHub ...

What is OpenClaw? Learn how this AI agent works, how to set it up step-by-step, and how it can help automate tasks across ...

MongoDB, Inc. (MDB) 46th Annual William Blair Growth Stock Conference June 2, 2026 10:20 AM EDTCompany ParticipantsMichael Berry - CFO & ...

Frame.io adds Japanese language support, Adobe Firefly asset integration, zero-click Premiere sign-in, and updated Python and TypeScript SDKs for V4.

Microsoft has discovered a new supply chain attack in which an attacker published fourteen malicious npm packages within a few hours. The packages masqueraded as tools for OpenSearch, Elasticsearch, ...

The Extensions SDK can be used to "expand, reshape and customize" Live Suite with new tools and features ...

Google has released a new CLI for Google Workspace, offering a unified interface for various services like Drive, Gmail, and ...

Now sites have a new way to spy on their visitors: measuring subtle interactions with their solid-state drives. The technique ...

OpenAI turns Codex into an enterprise platform with hosted web apps, 62 business app plugins, and 110 skills. Non-developers are 20% of 5M weekly users, growing 3x faster.

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...