GlassWorm malware uses a Zig-based dropper to infect developer tools, stealing data and spreading across IDEs.

Adobe has released an emergency security update for Acrobat Reader to fix a vulnerability, tracked as CVE-2026-34621, that ...

OpenAI rotated macOS code‑signing certificate after Axios supply chain breach Malicious Axios 1.14.1 pulled into app‑signing ...

Sonatype®, the leader in AI-driven DevSecOps, today unveiled the Q1 2026 Open Source Malware Index, identifying 21,764 malicious open source packages in the first quarter of the year and bringing the ...

The 2024 XZ incident illustrates how open-source software (OSS) has become strategic infrastructure in the global economy, ...

OpenAI is one of many organizations affected by the recent Axios supply chain attack attributed to North Korean hackers.

Stay ahead of the logs with our Monday Recap. We break down active Adobe 0-days, North Korean crypto stings, and critical CVEs you need to patch today ...

Axios, a widely used JavaScript library, is affected by a new critical vulnerability that enables attackers to chain exploits ...

OpenAI has told users of its Mac software to update their applications after a third-party supply-chain incident touched the company’s app-signing workflow, prompting a wider effort to replace ...

Last week, something alarming happened in the world of software — and almost nobody outside the tech industry noticed. A ...

As the way software is built fundamentally changes, Cloudflare introduces the infrastructure to power millions of autonomous, ...