Latest Engineering Articles

This article covers the exploitation of a zero-day vulnerability (CVE-2026-3502) in TrueConf video conferencing software targeting Southeast Asian government networks in a campaign called TrueChaos.

Meta Adaptive Ranking Model: Bending the Inference Scaling Curve to Serve LLM-Scale Models for Ads

This article introduces Meta's Adaptive Ranking Model for serving LLM-scale ad recommendations at sub-second latency.

Uplevel your workload scaling performance with GKE active buffer

Google Kubernetes Engine (GKE) introduces active buffer, a preview feature that eliminates scale-out latency by maintaining pre-provisioned spare cluster capacity.

GKE

Containers & Kubernetes

GitHub

1111 min read

AI•2026-03-31

Agent-driven development in Copilot Applied Science

This post describes how a GitHub Copilot Applied Science researcher built eval-agents, a tool to automate analysis of coding agent trajectories across benchmark runs.

Google Cloud

84 min read

AI•2026-03-31

How AI-powered tools are driving the next wave of sustainable infrastructure and reporting

This article explores how Google and Equinix are leveraging AI tools to transform sustainability reporting from manual, fragmented processes into efficient, real-time strategic systems.

North Korea-Nexus Threat Actor Compromises Widely Used Axios NPM Package in Supply Chain Attack

Google Threat Intelligence Group (GTIG) details an active supply chain attack on the axios NPM package attributed to North Korea-linked threat actor UNC1069.

Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts

Palo Alto Networks Unit 42 disclosed a security vulnerability in Google Cloud's Vertex AI platform where AI agents could be weaponized to access sensitive data.

Cloudflare

11 min read

Security•2026-03-31

Introducing Programmable Flow Protection: custom DDoS mitigation logic for Magic Transit customers

Cloudflare introduces Programmable Flow Protection, a beta feature for Magic Transit Enterprise customers that lets them deploy custom eBPF-based DDoS mitigation logic across Cloudflare's global network.

Axios package compromise and remediation steps

The axios npm package was compromised in an active supply chain attack discovered on March 31, 2026, and Vercel has documented remediation steps.

The Hacker News

01 min read

Security•2026-03-31

Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains

This article covers the Silver Fox (SwimSnake) threat group's expanded Asia cyber campaign using a newly discovered AtlasCross RAT delivered via typosquatted domains.

The Hacker News

01 min read

Security•2026-03-31

The AI Arms Race – Why Unified Exposure Management Is Becoming a Boardroom Priority

This article argues that AI-driven threats have fundamentally changed cybersecurity, making unified exposure management a strategic necessity.

Google Cloud

211 min read

AI•2026-03-31

Multi-Agent Architecture and Long-Term Memory with ADK, MCP, and Cloud Run

This article describes Part 2 of building Dev Signal, a multi-agent system on Google Cloud that transforms community signals into technical content using ADK, MCP, and Vertex AI.

Developers & Practitioners