The Hacker News

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

Claude Code flaws allow remote code execution and API key theft via untrusted repositories; three bugs fixed across 2025–2026 releases.

Passify Releases New Quantitative Report on Multi-Algorithm Correlation and Risk Aggregation

A technical study from Passify examining how unintended strategy correlation increases portfolio risk and the necessity ...
SecurityWeek

New ‘Sandworm_Mode’ Supply Chain Attack Hits NPM

Hulud-like Sandworm_Mode supply chain attack targets NPM developers to steal secrets and poison AI assistants.
IEEE

AskGraph: A Dependency-Aware Code Assistant Powered by Code Graphs and LLM-Generated Cypher Queries

Abstract: Large Language Models (LLMs) have transformed code assistants by enabling personalization, interactivity, and higher abstraction. However, these assistants often struggle with a common ...

Opinion - Moltbook’s ‘vibe-coded’ breach is the future of security failures

Earlier this month, the now viral social network Moltbook exposed 1.5 million API authentication tokens and 35,000 email ...

ChatGPT's new Lockdown Mode can stop prompt injection - here's how it works

Lockdown Mode enhances the protection against prompt injections and other advanced threats. With this setting enabled, ChatGPT is limited in the ways it can interact with external systems and data, ...
Que.com on MSN

OpenAI’s new coding model boosts productivity, raises cybersecurity threats

OpenAI’s latest coding-focused AI model is being positioned as a major leap forward for software development teams—promising faster prototyping, cleaner ...
VentureBeat

Claude Code's 'Tasks' update lets agents work longer and coordinate across sessions

Credit: VentureBeat made with Google Gemini 3 Image / Nano Banana Pro One of the biggest constraints currently facing AI builders who want to deploy agents in service of their individual or enterprise ...