Users of GitHub's command-line interface (CLI) who value privacy, beware. The Microsoft-owned code-hosting platform has quietly begun collecting pseudonymous client-side telemetry from CLI users and ...

Mobile gaming doesn't have to be limited to basic word games and puzzle titles. There's an app that lets you enjoy actual ...

Two newly discovered macOS threats are designed to harvest developer credentials and cloud access as attackers focus on ...

The open-source Git project has released Git 2.54, the latest version of the widely used distributed version control system for tracking changes in software projects. This release adds a new ...

Lovable's API exposed source code and database credentials for 48 days after the company closed a bug report. Up to 62% of AI ...

Bitfocus has released version 1.6 of its Buttons control platform, adding high-availability options, expanded single sign-on and stricter role-based access to support larger, security-conscious media ...

Antigravity Strict Mode bypass disclosed Jan 7, 2026, patched Feb 28, enables arbitrary code execution via fd -X flag.

SendspinZero is an open-source, DIY Sendspin audio receiver for your amplifier that relies on off-the-shelf parts costing ...

Say “publish this as a website” and your AI agent handles the rest: it builds the file, uploads it, and hands you a ...

The liquid restaking protocol said the compromised verifier was LayerZero's own infrastructure, and the setup it was faulted ...

Vercel confirmed that attackers accessed parts of its internal systems via a compromised third-party AI tool that used Google Workspace OAuth.

Anthropic's Claude has approved malicious code in a spoofed Git identity test, showing how weak GitHub Actions trust rules ...