CVE-2026-12957 in Amazon Q is the third MCP auto-execution vulnerability in three AI coding tools. The pattern reveals a ...
VS Code 1.127 enhances agent session management, introduces per-site browser permissions, and makes browser tools for agents ...
Local AI inference at 32B-parameter quality, no cloud API required: University of Waterloo researchers released PAW on July 2 ...
Lazarus Group concealed a four-module remote access toolkit inside six fake npm Rollup polyfill packages that fired at import ...
Immich 3.0 rolls out with major updates across mobile and web, improving editing, automation, video playback, and background ...
Google Health has just launched a CLI, allowing users and developers to access their health data and build tools like ...
The new 'Receipts not in the nature of income' field helps taxpayers distinguish capital receipts from exempt income and ...
Researchers identified what they believe is the first documented case of a ransomware operation, JadePuffer, conducted ...
Local AI inference at 32B-parameter quality, no cloud API required: University of Waterloo researchers released PAW on July 2, 2026, a system that compiles any natural-language task spec into a 23MB ...
SYSGO releases ELinOS 8, its industrial Linux platform, introducing new cybersecurity and compliance capabilities.
JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.
Cloud security firm Sysdig says it has documented the first ransomware operation carried out entirely by an autonomous AI ...