The supply chain attack on third-party library Axios has forced OpenAI to revoke its code-signing certificate and require ...

Seal Security today announced the Mythos Readiness Program, a limited-availability initiative for enterprises that are not part of Anthropic's private Project Glasswing review of Claude Mythos Preview ...

GlassWorm malware uses a Zig-based dropper to infect developer tools, stealing data and spreading across IDEs.

Backed by Sonatype's industry-leading security research team, Sonatype Repository Firewall helped customers prevent 136,107 open source malware attacks in Q1. To explore the full findings from the Q1 ...

OpenAI is one of many organizations affected by the recent Axios supply chain attack attributed to North Korean hackers.

An attacker purchased 30+ WordPress plugins on Flippa, planted backdoors that lay dormant for eight months, then activated ...

FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...

OpenAI revoked its macOS signing certificate after a malicious Axios dependency incident on March 31, 2026, preventing ...

All macOS users must update their OpenAI apps, including ChatGPT, to the latest versions following a security incident, ...

An unknown malware slinger targeting open source software developers via Slack impersonated a real Linux Foundation official ...

“Taught Claude Cowork to use NotePlan. It’s creating daily, weekly, and monthly notes. It’s creating notes that act as ...

Oops. A 60MB source map file just leaked Anthropic's entire roadmap.