Cybersecurity, AI safety, threat detection, and privacy in the age of AI.
34 articles
This explainer explores Bumblebee, a read-only supply-chain scanner open-sourced by Perplexity, designed to inventory developer endpoints without executing code, mitigating risks in software supply chains.
A hacker group called TeamPCP is systematically poisoning open source code repositories at an unprecedented scale, with GitHub being the latest victim of their supply chain attacks.
CISA credentials were found exposed on GitHub since November 2025, raising serious security concerns. The breach included SSH keys and plaintext passwords that could compromise critical infrastructure systems.
This explainer explores how AI-powered cyber attacks leverage machine learning to create adaptive, scalable, and evasive threats that challenge traditional network security approaches.
A malicious Hugging Face repository disguised as an OpenAI release distributed infostealer malware to Windows machines, with approximately 244,000 downloads before removal.
Learn how to set up a basic environment for understanding AI-powered browser vulnerability analysis using Python and browser automation tools.
This article explains how AI is being used to develop zero-day exploits, a significant advancement in cybersecurity threats, and how organizations must adapt their defensive strategies.
Learn how AI-powered penetration testing agents can find cybersecurity weaknesses in minutes instead of weeks, at a fraction of the cost of traditional manual tests.
Security researchers have discovered that Hugging Face and ClawHub, two major AI model repositories, contain hundreds of malicious models capable of executing arbitrary code on users' machines.
A month-long supply-chain attack compromised the widely used Daemon Tools disk imaging software, inserting backdoors into installers distributed through the official website. Users are being warned to scan their systems for potential infections.
GitHub rapidly fixed a critical remote code execution vulnerability within six hours, thanks to AI-powered discovery by Wiz Research. The incident highlights the growing role of artificial intelligence in cybersecurity and the importance of rapid response to prevent potential breaches.
Security firms Checkmarx and Bitwarden were targeted in a recent supply-chain attack, exposing vulnerabilities in the cybersecurity industry's defense mechanisms.
