There's another likely North Korean-linked scam hitting developers and their employers, while snarfing up credentials and ...

Apple yesterday held its WWDC 2026 Platforms State of the Union, detailing a wide range of updates to its developer tools and ...

Eight innovative tools that are reimagining web applications and how we build them. Welcome to the Great Unbloating.

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...

Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...

At the Build 2026 developer conference, Microsoft encouraged developers to build more native apps for Windows 11.

A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade ...

Lemon.io has released its 2026 Software Developer Rate Benchmark Report, analyzing over 2,500 contracts from 2024–2026. The ...

A threat actor has used artificial intelligence coding tools to build and refine malware intended to bypass endpoint detection and response systems, highlighting how generative AI is being folded into ...

Researchers who found the bug warn that its Moderate rating understates a threat reaching across LLM gateways, MCP servers and agent infrastructure.

GlassWorm poisoned 300 GitHub repositories since 2025, enabling supply chain attacks against developers and organizations.

TrapDoor spread 34 malicious packages across npm, PyPI, and Crates.io, stealing developer credentials and enabling persistence.