Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar information-stealing malware. Claude Code is a terminal-based AI agent from ...

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...

Less than a year after US artificial intelligence start-up Anthropic called out China as an “adversarial nation” and vowed to restrict the country’s access to its technologies, the company ...

Attackers continue to scale a campaign to seed Open VSX with seemingly benign VS Code extensions that spread self-propagating ...

The threat actor seeding the Open VSX code marketplace with fraudulent extensions that download the GlassWorm malware has ...

Plus: The FBI says a recent hack of its wiretap tools poses a national security risk, attackers stole Cisco source code as part of an ongoing supply chain hacking spree, and more.

A missed step in a manual deployment process exposed the internal workings of one of AI's hottest coding tools—and briefly handed the rest of the industry a detailed map of how Anthropic builds it.

Hackers are exploiting a recent accidental source code leak from Anthropic to spread Vidar infostealer malware via fake GitHub repositories. These malicious sites have even managed to appear in top ...

This was not a case of stolen credentials, but rather of vulnerability exploitation.