The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...

The Agent Governance Toolkit brings runtime policy enforcement to autonomous agents, targeting the OWASP top 10 agent risks.

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious versions anyway. The CI/CD Trust-Chain Audit Grid maps the six gaps it ...

I switched to WSL 2 and finally stopped feeling locked into Windows — here's why that changes everything.

Businesses in Europe and Africa now face localised phishing and malware attacks from a suspected China-aligned group that has ...

Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...

The Surface RTX Spark Dev Box brings back Microsoft's experimental design era with a wild unique chassis and 1 petaflop of ...

At the Build 2026 developer conference, Microsoft encouraged developers to build more native apps for Windows 11.

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP, simultaneously compromised Microsoft's durabletask Python ...

GitHub launches a new Copilot desktop app with AI agents, code review upgrades, sandboxes, and automation tools for ...

Your weekly cybersecurity recap: a GitHub supply chain worm, an exploited Android flaw, Instagram account takeovers, and a ...

Microsoft has officially expanded the Surface family with the introduction of the Surface RTX Spark Dev Box, a compact workstation designed specifically for AI developers and software engineers who ...