Yet another npm supply-chain attack is worming its way through compromised packages, stealing secrets and sensitive data as ...

Google launches AI agent suite at Cloud Next 2026 with Workspace Studio, A2A protocol at 150 orgs, and Project Mariner. The pitch: only Google owns the full stack.

A design choice in the MCP SDKs allows remote code execution across the AI supply chain.

Cybersecurity researchers have identified 22 new vulnerabilities in popular models of serial-to-IP converters from Lantronix ...

Google is rolling out Gemini in Chrome across seven APAC markets, adding in-browser AI tools for summaries, image edits, and ...

A multi-tenant authentication gap in Microsoft’s AI operations agent exposed live command streams, internal reasoning, and ...

Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol ...

The update was announced to all admins via email; they should apply it promptly. Code injection is a risk. As announced on ...

Cloudflare has released Sandboxes and Containers into general availability, providing persistent isolated Linux environments ...

The discovery involves a vulnerable GitHub workflow, within the Windows-driver-samples repository. Tenable Research has ...