Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.

The popular product lifecycle management platform is under active exploitation for an RCE vulnerability that could put ...

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...

OpenAI launches Patch the Planet to help open-source maintainers find, validate and fix software bugs with AI and human ...

Cordyceps, a systemic class of exploitable CI/CD vulnerabilities, allows unauthenticated attackers to hijack developer ...

Companies must be capable of detecting malicious DLLs and vulnerabilities in software libraries to prevent early-stage ...

OpenAI has deployed GPT-5.5-Cyber to execute automated open-source vulnerability remediation alongside security firm Trail of ...

OpenAI has unveiled a major expansion of its Daybreak cybersecurity initiative, introducing new AI-powered tools, ...

By targeting the automated workflows around repositories with targeted pull requests, attackers can potentially target ...

TensorFlow Probability is a library for probabilistic reasoning and statistical analysis in TensorFlow. As part of the TensorFlow ecosystem, TensorFlow Probability provides integration of ...

ThreatsDay Bulletin covers AI abuse, poisoned packages, phishing, macOS attacks, SD-WAN flaws, scams, and supply-chain ...

June 2026 TIOBE Index shows Python slipping below 19%, C++ moving back ahead of Java, and Rust reaching #12 as Paul Jansen revises his plateau call.