Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Alibaba listed Anthropic's Claude Code as high-risk software after researchers found steganographic markers that flagged Chinese users by timezone and proxy.
Alibaba has ordered all its employees to uninstall all Anthropic products from their machines after determining through an ...
In a response to the allegations in the report, Thariq Shihipar, who works on Claude Code, said on X on Wednesday that the code was part of an experiment Anthropic launched in March "meant to prevent ...
A new variation of the ClickFix technique is capitalizing on the popularity of Anthropic's Claude Code and other AI coding tools. Researchers at Push Security discovered the threat campaign, which ...
Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar information-stealing malware. Claude Code is a terminal-based AI agent from ...
A developer reverse-engineering Anthropic's Claude Code binary discovered on June 30, 2026, that the tool had been silently encoding hidden signals into its AI system prompts for at least three months ...
The public beta of Claude Security for Claude Enterprise customers is aimed at enabling discovery of code vulnerabilities and generation of fixes. Anthropic announced Thursday it’s moving Claude ...
What we know so far: Anthropic is facing renewed scrutiny from the AI and security communities after internal source code for Claude Code – its fast-growing agentic development environment – was ...
Every enterprise running AI coding agents has just lost a layer of defense. On March 31, Anthropic accidentally shipped a 59.8 MB source map file inside version 2.1. ...