Mozilla says 271 vulnerabilities found by Mythos have “almost no false positives”

Unlike previous vulnerability disclosure slop, Grinstead said, the details provided by its harness-guided Mythos analysis, ...
Microsoft

ClickFix campaign uses fake macOS utilities lures to deliver infostealers

Threat actors are targeting macOS users with fake utility fixes that trick them into running malicious Terminal commands.

One command turns any open-source repo into an AI agent backdoor. OpenClaw proved no supply-chain scanner has a detection category for it

CLI-Anything generates SKILL.md files that AI agents trust and execute. Snyk found 13.4% of agent skills contain critical ...
InfoQ

GitHub Enhances CodeQL with Declarative Security Modeling for Faster, More Flexible Analysis

GitHub has introduced a significant update to its CodeQL engine, enabling developers to define custom sanitizers and ...
Business Insider

Google says 75% of the company's new code is AI-generated

Three-quarters of new code at Google is being generated by AI, the company said. The number has been steadily increasing as the company pushes staff to adopt AI tools. Google CEO Sundar Pichai said a ...
UPI

North Korea tests cluster warheads on ballistic missiles

SEOUL, April 20 (UPI) --North Korean leader Kim Jong Un oversaw a test-launch of tactical ballistic missiles carrying cluster bomb and fragmentation mine warheads, state media reported Monday, marking ...
InfoQ

Anthropic Accidentally Exposes Claude Code Source via npm Source Map File

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...
VentureBeat

In the wake of Claude Code's source code leak, 5 actions enterprise security leaders should take now

Every enterprise running AI coding agents has just lost a layer of defense. On March 31, Anthropic accidentally shipped a 59.8 MB source map file inside version 2.1. ...
Bloomberg L.P.

Anthropic Rushes to Limit Leak of Claude Code Source Code

Anthropic PBC is rushing to address the inadvertent release of internal source code behind Claude Code, an AI-powered assistant that has become a key moneymaker for the company. Thousands of copies of ...
Wall Street Journal

Anthropic Races to Contain Leak of Code Behind Claude AI Agent

WSJ’s Kate Clark demonstrates how Anthropic’s new Cowork tool can help non-coders automate their lives–or at least attempt to. Photo: Claire Hogan/WSJ Anthropic is racing to contain the fallout after ...
TechSpot

Anthropic accidentally exposed Claude Code source, raising security concerns

What we know so far: Anthropic is facing renewed scrutiny from the AI and security communities after internal source code for Claude Code – its fast-growing agentic development environment – was ...
SiliconANGLE

Anthropic accidentally exposes Claude Code source code in npm packaging error

Anthropic PBC has accidently exposed the source code for its Claude Code command-line interface tool through a packaging error that led to the inclusion of sensitive ...