The website for the popular JDownloader download manager was compromised earlier this week to distribute malicious Windows ...

Microsoft Threat Intelligence said attackers placed malicious code inside a Mistral AI download distributed through a Python ...

Python developers using Visual Studio Code are getting an AI-assisted boost from the editor's IntelliCode extension. IntelliCode leverages machine learning algorithms to provide AI-assisted coding ...

Microsoft flagged a Mistral AI hack as a supply-chain attack that hid malware in a fake AI library on PyPI. Here's what ...

Companies are treating these repositories like content delivery networks - now the Linux Foundation and colleagues are saying ...

OpenAI says malware tied to the Shai-Hulud supply chain attack accessed internal repositories after infecting two employee ...

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...

Fake OpenAI Privacy Filter hit #1 on Hugging Face with 244,000 downloads, spreading infostealer malware to Windows users.

May the best coding AI win!

Hugging Face hosts 352,000 unsafe model issues. ClawHub's registry contains 341 malicious AI agent skills. The AI supply chain is now the most attractive target in software security.

ZiChatBot malware spread via 3 PyPI packages in July 2025 uses Zulip APIs as C2, enabling stealthy attacks across systems ...