Max-severity flaw in ChromaDB for AI apps allows server hijacking

A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to ...

Shai-Hulud keeps burrowing: 314 npm packages infected after another account compromise

Popular JavaScript modules including size-sensor and echarts-for-react hit as hijacked account closed GitHub warnings ...

Forcepoint details TeamPCP supply chain attack that turned LiteLLM into a credential stealer

A new report out today from cybersecurity company Forcepoint LLC’s X-Labs research team details a supply chain attack that ...
Virtualization Review

Google I/O '26 Fills Out Enterprise Agent Stack with Managed Agents, ADK 2.0

Google followed its Cloud Next '26 Gemini Enterprise Agent Platform rollout and its Antigravity CLI transition with a broader I/O 2026 agent-development stack spanning Agent Studio, Managed Agents API ...

Understand Tech Launches the AI Application Factory: Apps, Builder, and the Appliance They Run On

On-premise AI ecosystem: apps for technical and regulated industries, a no-code app builder for the rest, and a secured ...
Tech Times

Vercel Labs’ Zero Compiler Speaks JSON to AI Agents: Closing the Human-Translation Gap in Agentic Coding Loops

Vercel Labs released Zero on May 15, 2026 — a low-level systems programming language whose compiler was built from the ground ...
cybernews

Supply chain hit once again: single NPM account pushes 600+ compromised packages, used by millions

Another massive supply chain attack is spreading. Hundreds of compromised NPM packages are being detected, with hackers using stolen secrets to create over 2,200 public GitHub repositories, all ...
MCNews

Simon Skinner interview | Designing Norton’s future without being trapped by its past

Simon Skinner joined Norton in 2009 as employee number one of the modern era. Now, as Head of Design, he has helped shape the ...

Hackers have compromised dozens of popular open source packages in an ongoing supply chain attack

The attacks are part of a wider campaign known as Mini Shai-Hulud, which has already compromised several open source projects ...

Pacdora Data: 65% of New Online Packaging Designs Are Now Created as 3D Mockups

Based on 1.58 million projects: the first platform-level dataset on how online packaging designs split between 3D ...

Figure AI had one of its robots race an intern to sort packages. See who lost.

Figure AI's intern outperformed a humanoid robot in a package sorting contest, highlighting the challenges in robotics ...