OpenAI said on Thursday it will acquire Astral, as the ChatGPT maker doubles down on artificial intelligence-powered coding tools to compete more aggressively with rivals such as Anthropic. The ...

A malicious Python package masquerading as a legitimate Telegram development tool has been identified as a vehicle for remote code execution attacks, raising concerns about supply chain security ...

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...

Manufact, a Y Combinator startup, raised $6.3 million to build open-source tools and cloud infrastructure for the Model Context Protocol (MCP), the fast-growing standard backed by Anthropic and OpenAI ...

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

Paperclip is organizing OpenClaw AI agents into full company structures with roles, budgets, and tasks, signaling the rise of AI-run organizations.

UNC4899 breached a crypto firm via AirDrop malware and cloud exploitation in 2025, stealing millions through Kubernetes and ...

Microsoft's AI Toolkit extension for VS Code now lets developers scaffold a working MCP server in minutes. Here's what that looks like in practice -- including the parts that don't work, and a simpler ...

An undefined Chinese-speaking actor wields a combo of custom malware, open source tools, and LOTL binaries against Windows ...

Atek Midas, a Turkish company, has launched DSG-22.6 GHz, a high-performance, open-source RF signal generator designed to provide professional-grade ...