I started this as a side project, but my Windows Command Center suddenly became useful.

OpenAI has published a technical explanation of its Windows sandbox for Codex, detailing a stricter local setup for the coding agent on developer PCs. Codex can still read broadly across a system, ...

A fake repository mimicking OpenAI’s Privacy Filter on Hugging Face accumulated ~244,000 downloads before being removed. It delivered a multi-stage Rust infostealer ...

2026年5月初，全球数百万用户信赖的知名开源下载管理器 JDownloader 遭遇严重供应链攻击。攻击者暗中入侵了官方网站 jdownloader.org，将正版安装程序下载链接替换为携带全功能 Python ...

Security researchers have uncovered covert infostealer malware hidden in one of the top-ranking repositories on Hugging Face, ...

Windows 端投递的是经过混淆的 Python RAT；Linux 端则通过被污染的 shell 安装脚本落地 SUID-root 后门，并以 upowerd 名义伪装驻留 ...

Between May 6 and 7, it was dangerous to install JDownloader from alternative links on the site.

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...

Fake OpenAI Privacy Filter hit #1 on Hugging Face with 244,000 downloads, spreading infostealer malware to Windows users.

Critical out-of-bounds read in Ollama before 0.17.1 leaks process memory including API keys from over 300000 servers via ...

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...

ESET researchers have investigated an ongoing attack by the ScarCruft APT group that targets the Yanbian region via ...