Cybernews

Unprecedented GitHub hacking spree: “security research” AI bot compromises major repos from Microsoft, Datadog, and others

Five major GitHub repositories targeted by the autonomous AI bot “hackerbot-claw” were compromised through various injection ...
Cybernews

AI assistant runs hacker’s commands just from opening a project: critical vulnerability found in Claude Code

Claude Code would execute hidden code from untrusted projects before any user confirmation, Check Point reports.
Visual Studio Magazine

GitHub Copilot CLI Reaches General Availability, Bringing Agentic Coding to the Terminal

GitHub Copilot CLI is now generally available for all paid Copilot subscribers, offering agentic workflows, multiple AI model support, and specialized agents for terminal-based development.

New Claude Code Loop Feature Explained : Agent Loops vs Desktop Scheduling Limits

Claude Code Agent Loops currently has a 3-day expiry and active-session requirement, which limits long-term scheduling use. Learn how ...
Bleeping Computer

Hacker targets other hackers and gamers with backdoored GitHub code

A hacker targets other hackers, gamers, and researchers with exploits, bots, and game cheats in source code hosted on GitHub that contain hidden backdoors to give the threat actor remote access to ...
Arabian Post

AI bot exploits GitHub actions to breach major code pipelines

The attacks, which unfolded over several days starting in late February, involved the bot opening crafted pull requests that ...

Claude collaboration tools left the door wide open to remote code execution

Anthropic fixed the flaws – but the AI-enabled attack surfaces remain Security vulnerabilities in Claude Code could have allowed attackers to remotely execute code on users' machines and steal API ...
ZDNet

Claude Code makes it easy to trigger a code check now with this simple command

Automated security reviews in Claude Code help ensure code safety. Spot and fix vulnerabilities before your code reaches production. Run the /security-review command in the terminal or via GitHub ...