A malicious Hugging Face repository that reached the platform's trending list impersonated OpenAI's "Privacy Filter" project ...

Hugging Face hosts 352,000 unsafe model issues. ClawHub's registry contains 341 malicious AI agent skills. The AI supply chain is now the most attractive target in software security.

Breaking into data analytics isn’t just about learning tools—it’s about proving you can use them. A polished portfolio with real-world projects can bridge the gap between no experience and your first ...

Google Colab has introduced new integrations, free offers, and AI-powered features to make hands-on coding and machine learning more accessible, including to U.S. college students. The updates come as ...

ZiChatBot malware spread via 3 PyPI packages in July 2025 uses Zulip APIs as C2, enabling stealthy attacks across systems ...

SubQ by Subquadratic claims a 12 million token context window with linear scaling. Here is what it means for RAG, coding ...

Companies are treating these repositories like content delivery networks - now the Linux Foundation and colleagues are saying ...

Moderne, the Agent Tools company for AI-driven software engineering, today announced C# language support across its platform, extending deterministic, large-scale code transformation to .NET codebases ...

Over 1,800 developers were likely infected in the Mini Shai-Hulud supply chain attack that hit SAP, Lightning, and Intercom ...

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...