A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate ...

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...

Microsoft has simplified service mesh scaling and management with an ambient-based service network for AKS. Here’s how to get started. If you’re using Kubernetes, especially a managed version like ...

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.

A multi-stage attack on Linux devices began with an exposed F5 BIG-IP edge appliance and pivoted to an internal Confluence ...

With Flash GA, the company is attempting to transition from being a provider of raw compute to becoming the essential orchestration layer for the AI-first cloud.

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...

Attackers compromised the official Mistral AI Python package on PyPI along with hundreds of other widely-used developer packages, exposing GitHub tokens, cloud credentials, and password vaults across ...

Thousands of software development teams whose CI/CD pipelines depended on LocalStack’s free community edition lost access to ...

Hadrian open-sources its methodology for turning commodity Large Language Models (LLMs) into reliable code review tooling ...

Q1 2027 Earnings Call May 20, 2026 5:00 PM EDTCompany ParticipantsToshiya Hari - Vice President of Investor Relations ...

The post How Escape AI Pentesting Exploited SSRF in LiteLLM appeared first on Escape – Application Security & Offensive Security Blog. At Escape, we routinely test the AI infrastructure that teams ...