SecurityWeek

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.

The attack that hijacked Claude Code came through Sentry. Datadog, PagerDuty, and Jira have the same exposure.

Tenet Security hijacked Claude Code in 85% of tests via a fake Sentry error — no stolen credentials, no alerts. Datadog and ...
Visual Studio Magazine

Spring AI 2.0 Goes GA, Giving Java Developers a More Mature AI App Stack

Spring AI 2.0 advances the Java framework for generative AI apps with a Spring Boot 4 baseline, cleaner agentic tooling, Model Context Protocol support and vendor-backed integrations including Azure ...
InfoWorld

Visual Studio Code introduces restricted mode for untrusted folders

Workspace Trust feature in VS Code 1.26 lets users configure whether code in a project folder can be executed by VS Code ...
Opinion
Database Trends and ApplicationsOpinion

Chainguard Repository 2.0 Delivers Security and Compliance Updates

Chainguard is expanding Repository with new policy controls, malware and greyware scanning, and support for Java, Python, and container artifacts-helping organizations govern software consumption ...
SecurityWeek

‘DirtyClone’ Linux Kernel Vulnerability Leads to Root Access

DirtyClone, tracked as CVE-2026-43503, is a Linux kernel vulnerability that allows any local user to gain root privileges.

Cloud Engineer Lalith Sriram Datla Drives Secure Cloud Innovation Across Healthcare and Insurance Industries

WAUKESHA, WI / ACCESS Newswire / June 26, 2026 / With nearly four years of hands-on experience in DevOps, cloud engineering, and CI/CD automation, Lalith Sriram Datla has emerged as a vital force in ...

AI Coding is Fast, but the Rest of Your Delivery System is NOT

Most enterprise software delivery models were designed for a world in which code production was expensive and human effort was the scarce resource.
Computer Weekly

Secure Code Warrior CEO on surviving the AI ‘vulnerability apocalypse’

As enterprises embrace agentic AI and vibe coding, Secure Code Warrior CEO and co-founder Pieter Danhieux warns that ...
Microsoft

Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access

Microsoft Threat Intelligence identified an active multi-stage intrusion campaign targeting hospitality organizations in ...

Linux Foundation and Industry Leaders Launch Akrites to Defend Critical Open Source Software Against AI-Enabled Cyber Threats

The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced Akrites, a ...

AgileAI Labs Unveils Spec2TestAI's Natural Language No-Code Automated Testing Tool

Addressing the pervasive challenges within the software development lifecycle (SDLC), such as poorly defined requirements, ...