OpenAI revoked its macOS signing certificate after a malicious Axios dependency incident on March 31, 2026, preventing potential software misuse.

A lone hacker reportedly leveraged ChatGPT and Claude to breach nine Mexican government agencies, stealing citizen records.

Discover how a hacker exploited Claude and ChatGPT to breach government agencies. Learn about the AI-driven tactics used to ...

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...

Debloat tools promise a faster, cleaner Windows 11 in a few clicks. In reality, they barely change performance and sometimes ...

Although executed by different attackers – Axios by North Korean-linked goons, and Trivy et al. by a loosely knit band of ...

Hackers gained access to an API for the CPUID project and changed the download links on the official website to serve ...

Anthropic just built an AI model so dangerous it had to cancel the public launch. During pre-deployment testing, the company’s newest frontier model, Claude Mythos Preview, proved so adept at hunting ...

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, ...

Four vulnerabilities in CrewAI could be chained together via prompt injection for sandbox escape, remote code execution, and ...