Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Makers of AI browsers make lofty promises. With a single prompt, users can ask one to find a restaurant in a particular part ...
Decades-old Bash shell tricks can bypass safeguards in most open source AI coding agents, creating a new software supply ...
LayerX found that BioShocking could trick AI browsers into leaking credentials by disguising malicious prompts as game rules.
Researchers have discovered two vulnerabilities in the widely used Cursor AI-enabled integrated development environment (IDE) ...
A campaign active since last November has been targeting Python developers building Telegram bots with trojanized Pyrogram ...
Attackers don't need any special authentication to reach a target endpoint — they just need to know where it is.