SecurityWeek

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.

Corgi, the buzzy Y Combinator-backed insurance tech startup, says it didn’t steal an open source product

Corgi became embroiled in controversy when Papermark accused it of stealing its software. Corgi says it did not, raising new ...
SecurityWeek

Linux Foundation Unveils New Open Source Security Project Akrites

The Linux Foundation introduces Akrites, a joint effort to report, fix, and disclose vulnerabilities in open source software.

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...

Swift Package Index joins Apple, pledges to remain open source

Community-run Swift package search engine and metadata index Swift Package Index is joining Apple, but says little is ...
Decrypt

OpenAI Rolls Out GPT-5.6—But Only for Some Users Due to Trump Admin

OpenAI introduced the GPT-5.6 family of AI models on Friday, but only limited users can access them for now thanks to the U.S. government.
Decrypt

This AI Agent Survived 6,000 Hack Attempts—Here’s How

Developer Fernando Irarrázaval's AI agent experiment drew over 6,000 hack attempts from more than 2,000 attackers. No one ...
WeLiveSecurity

Award-winning news, views, and insight from the ESET security community

Your business may be small, but its attack surface is anything but. Readiness is the first step to resilience. Gamaredon in 2025: Leveraging tunnels, workers, dead drops, and new alliances ESET ...
GitHub

Ricardo Zamora Rojas SuenoGbsys2026

Customer stories Events & webinars Ebooks & reports Business insights GitHub Skills ...