Two different attackers poisoned popular open source tools - and showed us the future of supply chain compromise

FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...

Top open source AI platform Flowise hit by maximum-level security issue

Flowise AI platform carried CVSS-10 arbitrary code flaw Vulnerability in CustomMCP node exploited in the wild Up to 15,000 ...
NYU Tisch School of the Arts

Bairui Su’s ITP Thesis Project "Recho Notebook" to be presented at CHI 2026

Recho Notebook, an ITP thesis project by Bairui Su (ITP '25), is a new open-source coding environment designed for algorithms and ASCII art.
Silicon Canals

One maintainer, one compromised laptop: How North Korean hackers hijacked the Axios open source project

In early April 2025, security researchers confirmed that North Korean state-sponsored hackers had successfully compromised the Axios HTTP library. It is one ...
Developer Tech

AI code scanners halt Internet Bug Bounty payouts

The Internet Bug Bounty program has paused new submissions, citing a massive expansion in vulnerability discovery by AI code ...
CDOTrends

The AI That Hacks Back

Anthropic’s newest frontier model — still not publicly available and still technically a “preview” — is the most ...

Project Glasswing aims to secure the world’s software, and Anthropic’s mythology

Anthropic is pitching Project Glasswing as a cybersecurity breakthrough, but the first battle may be getting everyone to believe in the legend of Claude Mythos ...
Nextgov

Anthropic’s Glasswing initiative raises questions for US cyber operations

Intelligence officials and industry are weighing how Claude Mythos Preview could reshape hacking and cyberdefense. The ...
Defense One

Spy agencies eye new Anthropic AI model that spots cyber flaws

Claude Mythos Preview has found vulnerabilities in "every major operating system and web browser," company officials say.
Decrypt

Anthropic's Mythos Safety Report Shows It Can No Longer Fully Measure What It Built

Anthropic’s Claude Mythos is powerful, but Its own safety report reveals a deeper crisis that's gone largely unnoticed.
Enterprise Times

Security and AI news from the week beginning 30 March 2026

Anthropic and OpenAI just can't stay out of the news, which must be fun for their PR teams. This week, Anthropic accidentally ...

I vibe coded a feed reading web app. It was enlightening and uncomfortable

Vibe coding works. I wish it didn't. But it does, well enough. And barring some revolution that overturns the new world ...