GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.
Security Boulevard

FAQ on CVE-2026-21514: OLE bypass N-Day in Microsoft Word

An N-day vulnerability in Microsoft Word exposes nearly 14 million assets. Attackers can exploit this flaw to bypass security prompts, enabling deployment of malware and establishing persistent access ...
Machine Design

Physical AI Hype vs Reality: Kung Fu Robots are Cool...But Should You Hire One?

Martial arts robots may play well on stage, but can they get work done? A look at what it takes to deliver the reliability and safety required for autonomous robotic systems ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
Microsoft

Observability for AI Systems: Strengthening visibility for proactive risk detection

As AI systems grow more autonomous, observability becomes essential. Learn how visibility into AI behavior helps detect risk and strengthen secure development.
UC San Diego Today

A UC San Diego Tool Teaching Code to 25 Million is Even More Critical in Age of AI

“AI may generate code faster than any human,” Guo said. “But the need to understand what code is doing has only intensified. AI generates code that may seem right, but it isn’t always reliable. You ...