Max-severity flaw in ChromaDB for AI apps allows server hijacking

A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to ...
CSO Online

AntV data visualization tool the latest to be hit by ongoing npm supply chain attacks

The world’s largest open-source registry, node package manager (npm), has been hit by another fast-moving malware attack, ...
Microsoft

How Storm-2949 turned a compromised identity into a cloud-wide breach

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...
TMCnet

Pulumi Closes the AI Deployment Gap with Agent-Native Infrastructure and Superintelligence Partnerships

New integrations with AI industry leaders lower barriers to AI application development and deployment. Neo agent capabilities bring infrastructure operations to the surfaces where developers, platform ...

Google launches Gemini 3.5 Flash model. How to try it for free now.

Google just unveiled a new family of models for Gemini at its annual Google I/O developers conference: Gemini 3.5. The first ...

Anthropic Buys The SDK Pipeline OpenAI And Gemini Depend On

Anthropic acquired Stainless, the SDK compiler behind OpenAI, Gemini and Llama. The deal hands one AI lab structural leverage ...
Microsoft

Exposing Fox Tempest: A malware-signing service operation

Fox Tempest is a financially motivated threat actor operating a malware‑signing‑as‑a‑service (MSaaS) used by other ...