Weekly cybersecurity recap covering zero-days, malware, phishing, supply chain attacks, cloud threats, AI security risks, and ...

ZiChatBot malware spread via 3 PyPI packages in July 2025 uses Zulip APIs as C2, enabling stealthy attacks across systems ...

The PCPJack worm targets cloud environments and vulnerable web applications to remove TeamPCP infections and steal ...

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...

This portable computer is the Raspberry Pi alternative I didn't know I needed ...

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a vulnerability in the developers’ account workflow that gave access to its signing keys ...

I tried this free Windows cleanup tool to see if it'd speed up my PC - and it worked ...

DuckDB Labs recently released DuckLake 1.0, a data lake format that stores table metadata in a SQL database rather than ...

There’s a lot of love all over the world for GrapheneOS, the gold standard of mobile security. There’s very little love between the two guys at the center of its history.

In March 2026, Trivy, one of the most widely used open-source vulnerability scanners in the Kubernetes ecosystem, was weaponized against the very organizations that relied on it for security.

No job and a new virus. What a nightmare.