Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide ...

This weekly recap, “Best of the Worst,” is the companion piece. Every Friday, I’ll summarize the attacks we published that ...

Coda One, a London-based AI startup, has launched a free online platform combining 59 AI writing, PDF, image, and developer ...

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...

The open-source tool promises hands-free automation, but users may find it costly, complex, and less practical than expected.

Indirect prompt injection represents a more insidious threat: malicious instructions embedded in content the LLM retrieves ...

A newly documented BlankGrabber infection chain is using a bogus “certificate” loader to disguise a multi-stage Windows compromise, adding another layer of deception to a commodity stealer already ...

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...

Bitdefender finds a sharp rise in phishing and malware emails targeting Gulf countries after February 28 escalation.

On March 19, 2026, a threat actor known as TeamPCP compromised Aqua Security’s Trivy vulnerability scanner – the most widely adopted open-source scanner in the cloud-native ecosystem. The attacker ...

In this article, I would like to engage the reader in a thought experiment. I am going to argue that in the not-so-distant future, a certain type of prompt injection attack will be effectively ...

The chart patterns identified are based on established principles of technical analysis and are presented solely for informational purposes. These should not be misconstrued as a recommendation to buy ...