Decades-old Bash shell tricks can bypass safeguards in most open source AI coding agents, creating a new software supply ...
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Maintainers: Zachary Taylor, [email protected] and Helen Oleynkova, [email protected] Helen Oleynikova, Michael Burri, Zachary Taylor, Juan ...
An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
Cisco SD-WAN zero-day CVE-2026-20245 was exploited months before disclosure: Mandiant reveals how a malicious CSV file ...
Mandiant says CVE-2026-20245 was exploited as a Cisco SD-WAN zero-day to escalate admin access to root on a provider network.