Mozilla researchers revealed a new attack that tricks Claude Code into running hidden commands from seemingly harmless GitHub repositories.
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
Researchers found a way to trick AI coding assistants like Claude into running malware hidden in GitHub repositories. Here's ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results