Separate but similar campaigns described by Microsoft and Trend Micro use malicious zip files to spread malware via social ...
The group compromised at least 10 regional organizations, including two state-owned entities, and deployed a new backdoor.
Mozilla 0DIN’s Claude Code demo shows how clean GitHub repos can expose AI coding agents to prompt injection, reverse shells, and credential risk.
Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
Microsoft Threat Intelligence identified an active multi-stage intrusion campaign targeting hospitality organizations in ...
Got a spare PC? How to open-source your smart home - for free ...
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
India’s cybersecurity watchdog, CERT-In, has warned WhatsApp Web and Desktop users about a malware campaign that can compromise accounts and infect laptops or mobile devices. The malware spreads ...
DirtyClone, tracked as CVE-2026-43503, is a Linux kernel vulnerability that allows any local user to gain root privileges.
A researcher found that using Anthropic’s Claude Opus 4.7, he could break into the website of Front Gate—used by every ...
Mozilla researchers revealed a new attack that tricks Claude Code into running hidden commands from seemingly harmless GitHub repositories.