BlueRock today announced the open source release of BlueRock MCP Python Hooks, a lightweight runtime observability tool for Python. It captures MCP server activity by inspecting the protocol, ...

Turla turns Kazuar into a 3-module P2P botnet, enabling stealthy C2, resilient tasking, and persistent access.

As adoption of MCP servers accelerates into the tens of thousands, developers and platform teams are increasingly responsible ...

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...

Critical out-of-bounds read in Ollama before 0.17.1 leaks process memory including API keys from over 300000 servers via ...

Claude AI guided a threat actor toward OT ICS SCADA systems in an attack on a water and drainage utility in Mexico.

Four research teams found the same confused deputy failure in Claude across three surfaces in 48 hours. This audit matrix ...

(Nasdaq: KLTR), the Agentic Digital Experience company, today announced the open-source release of a suite of AI agent skills - structured, production-tested knowledge modules that enable AI coding ...

Thousands of software development teams whose CI/CD pipelines depended on LocalStack’s free community edition lost access to ...

A cybercriminal group came close to launching a mass attack earlier this year, armed with a software exploit that an AI model ...

Google says attackers are using AI for zero-day research, malware development, reconnaissance, and access to premium AI tools ...

After the CopyFail vulnerability gave root access from any user on almost all distributions last week, this week we’ve got DirtyFrag. This chains the vulnerability in CopyFail (xfrm-ESP) and ...