An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

IntroductionOn March 12, 2026, Zscaler ThreatLabz discovered a malicious ZIP archive containing military-themed document lures targeting Chinese-speaking individuals. Our analysis of this sample ...

Say “publish this as a website” and your AI agent handles the rest: it builds the file, uploads it, and hands you a ...

The compromise of a version of Bitwarden's CLI is connected to the ongoing Checkmarx supply chain campaign, but differences in the operational methods of both incidents are making it difficult to ...

CVE-2026-33626 exploited within 13 hours of disclosure, enabling SSRF-based cloud credential theft and internal scanning.

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...

The indie gaming world has absolutely blown up in the past ten years. Small teams and solo developers are making games that ...

A severe cross-site-scripting (XSS) vulnerability in DNN, a popular open-source content management platform, allows attackers ...

Uncover the simple steps to deploy a comprehensive toolkit on a Raspberry Pi, empowering you to ditch sketchy web tools and ...

It works with different search engines, and works on old Android devices too.

by Katie Parrott in Context Window Was this newsletter forwarded to you? Sign up to get it in your inbox. Introducing ...

Unified AI governance: discover shadow AI, prioritize risk, and reconcile assets into an audit-ready inventory across all ...