От Kubernetes до AI Engineering: 5 главных трендов Технологического радара DevOpsConf 2026
Представьте типичный разговор на ретроспективе: команда обсуждает, стоит ли переходить с Ansible на Terraform, нужен ли Backstage или хватит самописно…
Open Source
⚑ Report a ProblemLatest Open Source news from Tech News
All topics
AI
agents
ai
api
architecture
automation
aws
beginners
career
claude
database
devchallenge
devops
discuss
javascript
linux
llm
machinelearning
mcp
opensource
performance
productivity
programming
python
rust
security
showdev
tutorial
typescript
webdev
Paragon is not collaborating with Italian authorities probing spyware attacks, report says
Despite promising to help determine what happened with the hacks targeting journalists and activists in Italy, Israeli American spyware maker Paragon …
US Supreme Court appears split over controversial use of ‘geofence’ search warrants
The U.S. top court is expected to rule on whether to allow police to identify criminal suspects by dragnet searching the databases of tech giants.
Securing the git push pipeline: Responding to a critical remote code execution vulnerability
How we validated, fixed, and investigated a critical vulnerability in under two hours, and confirmed no exploitation. The post Securing the git push p…
Open source package with 1 million monthly downloads stole user credentials
If you're one of millions using element-data, it's time to check for compromise.
Hacker who allegedly carried out cyberattacks for China is extradited to U.S.
Xu Zewei is accused of participating in a Chinese government hacking group that broke into thousands of U.S. organizations and stole COVID-19-related …
Can your operations handle your security ambitions?
For software companies, security is inseparable from software quality. That makes security excellence a real competitive advantage. But closing the Th…
Discord Sleuths Gained Unauthorized Access to Anthropic’s Mythos
Plus: Spy firms tap into a global telecom weakness to track targets, 500,000 UK health records go up for sale on Alibaba, Apple patches a revealing no…
Another spyware maker caught distributing fake Android snooping apps
Researchers have found a new case where government authorities used a fake Android app to plant spyware on a target’s phone. The company that allegedl…
Cursor and Chainguard partner to lock down the AI agent supply chain
Cursor and Chainguard are setting their sights on securing the open source dependency chain in AI-generated code — a problem The post Cursor and…
Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—and Predates Stuxnet
Researchers have finally cracked Fast16, mysterious code capable of silently tampering with calculation and simulation software. It was created in 200…
Anthropic’s Mythos breach was humiliating
Anthropic's tightly controlled rollout of Claude Mythos has taken an awkward turn. After spending weeks insisting the AI model is so capable at cybers…
Surveillance vendors caught abusing access to telcos to track people’s phone locations, researchers say
The Citizen Lab found two separate surveillance vendors abusing the backbone of cellular networks to spy on several victims across the world.
Crypto scam lures ships into Strait of Hormuz, falsely promising safe passage
Ship attacked by Iran after possibly falling for safe passage crypto scam.
Microsoft issues emergency update for macOS and Linux ASP.NET threat
When authentication fails, things can go very, very wrong.
Anthropic’s Mythos rollout has missed America’s cybersecurity agency
Several US federal agencies are taking up Anthropic's new cybersecurity model to find vulnerabilities, but one is reportedly not getting in on the act…
Anthropic’s most dangerous AI model just fell into the wrong hands
Anthropic's Mythos AI model, a powerful cybersecurity tool that the company said could be dangerous in the wrong hands, has been accessed by a "small …
Mozilla: Anthropic's Mythos found 271 zero-day vulnerabilities in Firefox 150
CTO says new AI model is "every bit as capable" as world's best security researchers.
Mozilla Used Anthropic’s Mythos to Find and Fix 151 Bugs in Firefox
The Firefox team doesn’t think emerging AI capabilities will upend cybersecurity long term, but they warn that software developers are likely in for a…
With US spy laws set to expire, lawmakers are split over protecting Americans from warrantless surveillance
Some lawmakers are calling for widespread reforms following years of surveillance scandals and abuses across successive U.S. administrations. But even…
Palantir posts mini-manifesto denouncing inclusivity and ‘regressive’ cultures
Palantir's ideological bent has come under more scrutiny as it's worked with ICE and positioned itself as a defender of "the West."
Hackers are abusing unpatched Windows security flaws to hack into organizations
A security researcher published details of three security vulnerabilities in Windows Defender, and the code used to exploit them. Now, hackers are tak…
With US spy laws set to expire, lawmakers are split over protecting Americans from warrantless surveillance
Some lawmakers are calling for widespread reforms following years of surveillance scandals and abuses across successive U.S. administrations. But even…
Cal.com goes private: A security reckoning for open source
Cal.com, an open-source startup that builds scheduling infrastructure for developers and enterprises, announced on Tuesday that it’s m…
Agents are rewriting the rules of security. Here’s what engineering needs to know.
AI agents are reshaping software development. They can autonomously read codebases, write and edit files, run tests, and fix bugs, The post Agents are…
Claude Mythos Preview completes full cyberattack simulation for the first time
The UK-based AI Security Institute (ASI) this week released the results of its evaluation of Anthropic’s new Claude Mythos Preview, The post Cla…
Hack the AI agent: Build agentic AI security skills with the GitHub Secure Code Game
Learn to find and exploit real-world agentic AI vulnerabilities through five progressive challenges in this free, open source game that over 10,000 de…
How exposed is your code? Find out in minutes—for free
The new Code Security Risk Assessment gives you a one-click view of vulnerabilities across your organization, at no cost. The post How exposed is your…
Adobe fixes PDF zero-day security bug that hackers have exploited for months
It's not clear how many people were compromised by this hacking campaign, but a security researcher said the hackers were targeting victims since at l…
Podcast: How SBOMs and Engineering Discipline Can Help You Avoid Trivy’s Compromise
Viktor Peterson, part of the CISA task force working on SBOM blueprints and co-founder of sbomify, explores the shifting landscape of software supply …