The ChromaToast vulnerability can be exploited by forcing the ChromaDB API server to fetch and load maliciously crafted AI ...

A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to ...

Four research teams found the same confused deputy failure in Claude across three surfaces in 48 hours. This audit matrix ...

Hugging Face's LeRobot platform — a free, open-source framework for training AI models on physical robots — now hosts more than 58,000 community-contributed datasets, up from 1,145 at the end of 2024, ...

OX Security confirmed arbitrary command execution on six live platforms and estimates 200,000 MCP servers are exposed. Here's how to audit your deployments.

A research team at Mohamed bin Zayed University of Artificial Intelligence published a finding in April 2026 that has gained traction in engineering circles for reasons that go beyond its headline ...

The U.S. Department of Justice (DoJ) on Thursday announced the arrest of a Canadian man in connection with allegedly operating a distributed denial-of-service (DDoS) botnet known as Kimwolf . In ...

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary code on the host system. The security issue is tracked as CVE-2026-26956 and ...

Milestone Mojo release reveals a systems programming language with precise control over memory, strong types, GPU programming ...

Weekly ThreatsDay Bulletin: supply chain attacks, fake support lures, AI tampering, data leaks, ransomware, and exploited ...

A Florida man is scheduled for execution next month after his conviction in the killing of his cousin's girlfriend and her 4-year-old daughter under a death warrant signed by Gov. Ron DeSantis ...

The Department of Justice on Friday directed the Bureau of Prisons to expand death penalty protocols to include pentobarbital injections and firing squads as part of broader actions to strengthen the ...