ThreatsDay Bulletin: active exploits, supply chain attacks, AI abuse, and stealth data risks observed this week.

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol ...

Scammers built a convincing fake Windows update site that installs password-stealing malware. Learn how the multi-stage ...

Tutorials are a fundamentally broken approach. There's a much better way, and it applies to everything you learn, not just ...

Anthropic introduces “repeatable routines” in Claude Code, bringing AI-powered automation and a redesigned workspace to ...

A multi-tenant authentication gap in Microsoft’s AI operations agent exposed live command streams, internal reasoning, and ...

Which technologies, designs, standards, development approaches, and security practices are gaining momentum in multi-agent ...

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...

I don't really know why, though.

Choosing between SAML, OIDC, and OAuth 2.0? Explore 12 critical differences to help your B2B engineering team select the right authentication protocol today.