Techzine Europe

Malicious Python package poses new supply chain threat

The open-source package elementary-data, with over a million downloads per month, has been compromised. Attackers exploited a vulnerability in a GitHub ...

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

OpenAI taps Airbnb executive Emmanuel Marill as first managing director for Europe, West Asia, Africa

Emmanuel Marill will be tasked with the expansion of ChatGPT’s parent company in key markets, where political pressure is ...
Tom's Hardware on MSN

Anthropic's model context protocol includes a critical remote code execution vulnerability

A design choice in the MCP SDKs allows remote code execution across the AI supply chain.
Business.Scoop

Snowflake Expands Snowflake Intelligence And Cortex Code To Power The Control Plane For The Agentic Enterprise

Snowflake Intelligence now serves as a personal work agent for business users that adapts over time by learning individual ...

OpenAI unveils ChatGPT Images 2 image-gen model capable of magazine design

OpenAI is announcing its upgraded ChatGPT image generation model with ChatGPT Images 2. The company is also scaling up ...
goskagit.com

Chainguard and Cursor Partner to Secure Agentic Coding with Trusted Open Source

Joint solution closes the software supply chain trust gap with secure-by-default artifacts for engineering teams building ...
The Next Web

OpenAI’s Codex for Mac now watches your screen to build context, but sends the screenshots to its servers first

Codex's Chronicle feature captures Mac screenshots, processes them on OpenAI's servers, and stores unencrypted text memories ...
The Hacker News

SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files

CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...
TMCnet

Speakeasy's SDK Generator Comparison

Comparison evaluates five leading SDK generators on language coverage, runtime type safety, dependency footprint, OpenAPI ...
Infosecurity Magazine

Systemic Flaw in MCP Protocol Could Expose 150 Million Downloads

However, in a report published on April 15, researchers at Ox Security claimed that a flaw in the protocol could enable ...