Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows and macOS systems. Threat actors are exploiting a common developer habit — ...
Hidden Attribution Markers Found in Anthropic Claude Code Anthropic's AI model has been found to contain hidden tracking mechanisms targeting Chinese users within system prompts and code. Gabrielle ...
According to a Reddit user, their discovery is alarming because the method used to transmit the findings is steganography, a ...
An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
Hackers exploit Claude Code leak with fake GitHub repos Malicious files deploy Vidar infostealer and GhostSocks proxy malware Anthropic faces rising scrutiny amid recent vulnerabilities and rapid ...
AI developer tools are gaining popularity fast, which makes them prime targets for hackers. Researchers at Kaspersky discovered a malware campaign disguised as Claude Code installation instructions.
Researchers found a way to trick AI coding assistants like Claude into running malware hidden in GitHub repositories. Here's ...
An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious payload that remains invisible to security scanners, AI agents, and human ...
A developer reverse-engineering Anthropic's Claude Code binary discovered on June 30, 2026, that the tool had been silently encoding hidden signals into its AI system prompts for at least three months ...
Researchers tracked a seven-week campaign that leveraged trusted platforms and AI-generated trust to trick users into executing malicious commands and exposing enterprise credentials. Threat actors ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results