UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were receiving unauthorized patch updates, all containing the same hidden ...

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

During an investigation into exposed OpenWebUI servers, the Cybernews research team identified a malicious campaign targeting vulnerable OpenWebUI servers with cryptocurrency miners and Info Stealers.

Windows Update can update drivers, sure, but BIOS/UEFI updates are another beast entirely. They patch critical security gaps and need to be checked manually.

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

In addition to rolling out patches to address two zero-days affecting SQL Server and .NET, Microsoft introduced Common Log ...

In the era of A.I. agents, many Silicon Valley programmers are now barely programming. Instead, what they’re doing is deeply, ...

Dockpeek lets you view, monitor, and manage multiple Docker containers from a simple web dashboard, saving time and avoiding CLI errors.

Paperclip is organizing OpenClaw AI agents into full company structures with roles, budgets, and tasks, signaling the rise of AI-run organizations.

Today is Microsoft's March 2026 Patch Tuesday with security updates for 79 flaws, including 2 publicly disclosed zero-day ...

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Speaking with Billy Barnell during a recent episode of the Half the Picture podcast (which you can check out below, with a shoutout to Cultbox for also getting the word out), composer Murray Gold ...