After details of a yet-to-be-announced model were revealed due to the company leaving unpublished drafts of documents and blog posts in a publicly visible data cache, Anthropic has been hit with yet ...

GlassWorm malware uses a Zig-based dropper to infect developer tools, stealing data and spreading across IDEs.

GlassWorm uses a fake WakaTime VS Code extension to infect IDEs, deploy RATs, and steal data, prompting urgent credential ...

Zapier reports just-in-time learning involves acquiring specific knowledge exactly when needed, enhancing efficiency and ...

Anthropic last month reduced the TTL (time to live) for the Claude Code prompt cache from one hour to five minutes for many requests, but said this should not increase costs despite users reporting ...

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar ...

Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...

Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

Anthropic has exposed Claude Code's source code, with a packaging error triggering a rapid chain reaction across GitHub and ...

AI firm Anthropic accidentally leaked its Claude Code source code via an npm package, revealing unreleased features like an ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...