Claude Code leak used to push infostealer malware on GitHub

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar ...
Infosecurity Magazine

GitHub Used as Covert Channel in Multi-Stage Malware Campaign

A series of malicious LNK files targeting users in South Korea has been detected using a multi-stage attack chain that uses ...
Windows Report

Anthropic Claude Code Leak Triggers Malware Campaign on GitHub

Claude Code leak is now used to spread malware via fake GitHub repos, delivering infostealers and backdoor tools.
EcoPortal.netOpinion

It started as a quiet upload on GitHub until a tool called DarkSword began exposing a vulnerability that could affect hundreds of millions of iPhones

What began as a leak to GitHub has spread across the internet like wildfire. DarkSword is a spyware system that can affect ...

Fake VS Code alerts on GitHub spread malware to developers

A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the ...
Windows Report

Axios Hack Bypasses GitHub Protections and Installs Hidden Malware on Systems

The popular JavaScript HTTP client Axios has been compromised in a supply chain attack, exposing projects to malware through ...

GitHub Store 1.7.0: Updates without click, security without root

Automatic updates, silent install, app-repo linking and signature verification: GitHub Store becomes a power-user tool with ...
The Manila Times

Centrilogic Achieves Agentic DevOps with Microsoft Azure and GitHub Specialization

Centrilogic, a global provider of IT transformation solutions, today announced it has earned the Agentic DevOps with ...

GitHub developers targeted by fake VS Code alerts spreading malware

Socket uncovers large-scale GitHub spam campaign abusing “Discussions” notifications Fake advisories with bogus CVEs trick ...

Anthropic scrambles to contain self-inflicted leak of valuable AI code

Anthropic has been scrambling to contain a self-inflicted mess after it accidentally leaked a treasure trove of internal code ...

Anthropic says no sensitive data exposed in leak of code behind Claude AI agent

Anthropic said no sensitive customer data were exposed after accidentally revealing the underlying instructions it uses to ...

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...