Yet another experiment proves it's too damn simple to poison large language models
There is no 6 Nimmt! champion, but a $12 domain registration and one Wikipedia edit convinced several bots there was
Security & Lifecycle News
Aggregated from vendor advisories, security research, and industry publications.
SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack
Cybersecurity researchers are sounding the alarm about a new supply chain attack campaign targeting SAP-related npm Packages with credential-stealing malware. According to reports …
NASA boss: make Pluto a planet again
Despite looming science cuts, Isaacman finds resources to poke the planetary hornet nest
CISA flags data-theft bug in NSA-built OT networking tool
GrassMarlin leaks sensitive information, provided your targeting phishing skills are sharp enough
Vect 2.0 Ransomware Acts as Wiper, Thanks to Design Error
The emerging ransomware has been deployed against victims of the TeamPCP supply chain attacks, but organizations should think twice before paying for a decryptor.
AWS plants more tombstones in the application graveyard
Eleven up, ten down
New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs
Cybersecurity researchers have discovered malicious code in an npm package after a malicious package as a dependency to the project by Anthropic's Claude Opus large language model …
GitHub: Zounds, a genuinely helpful AI-assisted bug report that isn't total slop! Here, Wiz, take this wad of cash
Claude ploughs through months of work in rapid time, helps Wiz researchers nab lucrative award
Lotus Wiper Attack Targets Venezuelan Energy Firms, Utilities
An analysis of the destructive malware reveals sophisticated living-off-the-land (LotL) techniques and detailed strategies for the widespread deletion of data.
AWS keynote hypes AI as magic. Its own engineers tell a different story
No shortcuts, human-review everything, says internal team - and keep hiring junior developers
Microsoft opens door to the past by releasing 86-DOS and PC-DOS 1.00
Back to a time when source repositories were printouts and commits were hand-written notes
EU waves through open source age-check tool to keep kids safe online
'Online platforms can rely on our app,' says Commish, 'there are no more excuses'
Webinar: How to Automate Exposure Validation to Match the Speed of AI Attacks
In February 2026, researchers uncovered a shift that completely changed the game: threat actors are now using custom AI setups to automate attacks directly into the kill chain. We …
What to Look for in an Exposure Management Platform (And What Most of Them Get Wrong)
Every security team has a version of the same story. The quarter ends with hundreds of vulnerabilities closed. The dashboards are bursting with green. Then someone in a leadership …
GitHub says sorry and vows to do better as uptime slips and devs complain
After Hashicorp co-founder blasts the source shack and numbers slide
Wind Telecom Dominican Republic and ZTE join forces to accelerate smart home innovation
Elevating residential connectivity with AI-driven network optimization and secure cloud-based home monitoring solutions
ZTE ensures 2026 Jiangsu Football City League opening ceremony with 5G-A, powering robot traffic police debut
Pioneering the future of smart sports with the world’s first practical deployment of 5G-A 'EasyOn·Robot' private networks for humanoid traffic police
Claude Mythos Has Found 271 Zero-Days in Firefox
That’s a lot. No, it’s an extraordinary number: Since February, the Firefox team has been working around the clock using frontier AI models to find and fix latent security vulnerab…
ZTE and XLSMART officially launch Innovation Center in Jakarta, accelerating 5G-advanced and AI readiness for Indonesia
Driving cross-sector digital transformation through collaborative 5G-A research and AI-powered network solutions
GoDaddy customer claims registrar transferred 27-year-old domain without any security checks
32 phone calls, 17 email chains, a 5-day ordeal, and no help during the daddy of all stuffups, claim those affected
Critical cPanel Authentication Vulnerability Identified — Update Your Server Immediately
cPanel has released security updates to address a security issue impacting various authentication paths that could allow an attacker to obtain access to the control panel software.…
AI clause in new SAP API policy has partners worried over lock-in
Expert says it could push customers and partners to work with undocumented APIs
CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added two security flaws impacting ConnectWise ScreenConnect and Microsoft Windows to its Known Exploite…
Bork in Prague: SUSE's keynote gods demand their tribute
Linux vendor touts European independence while rate limits, Chromium popups, and cold sparks steal the show
30 ClawHub skills secretly turn AI agents into a crypto swarm
Yet another reason not to feast on OpenClaw
When robots join the race: 5G-A powers a new kind of marathon
Human and humanoid runners share the track as next-gen connectivity underpins real-time AI performance
LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure
In yet another instance of threat actors quickly jumping on the exploitation bandwagon, a newly disclosed critical security flaw in BerriAI's LiteLLM Python package has come under …
Hashicorp co-founder Mitchell Hashimoto says GitHub ‘no longer a place for serious work’
Bemoans frequent outages that mean he’ll move Ghostty elsewhere
Future holiday horror: ‘A robot lost my luggage in Tokyo’
Haneda airport will start testing humanoid robots, because everything that gets a plane flying was designed for our species
The future of software development: Now with less software development
At AI Dev 26 x SF, code slingers confront their relationship with AI