PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...
The Hacker News

Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

CVE-2026-5752 CVSS 9.3 flaw in Terrarium enables root code execution via Pyodide prototype traversal, risking container ...
the deep dive

An AI Coding Agent Deleted a Startup’s Entire Database in 9 Seconds…Then It Explained Exactly Why It Shouldn’t Have

On April 25, a Cursor AI coding agent running Anthropic‘s Claude Opus 4.6 deleted the entire production database and all ...
San Diego Union-Tribune

San Diego Union-Tribune

🗳️ Gubernatorial poll 🥑 April in the garden 🚀 Photos: Artemis II 🖥️ AI in schools ⚾ Padres City Connect 2.0 Josh Newman, Gus Mattammal, Nichelle Henderson and Richard Barrera detailed how they ...