Claude Code

Claude Code users keep 50% higher limits until July 19

Claude Code users keep 50% higher limits until July 19 2026-07-13 at 12:06 By Anamarija Pogorelec Anthropic has extended a limited-time promotion that increases weekly usage limits in Claude Code by 50% through July 19, 2026, at 11:59 PM PT. When the promotion ends, weekly usage limits will return to their standard levels without any […]

Claude Code users keep 50% higher limits until July 19 Read More »

AWS centralizes access, spending, and governance for Claude

AWS centralizes access, spending, and governance for Claude 2026-07-09 at 11:37 By Anamarija Pogorelec Claude apps gateway for AWS is a self-hosted control plane that gives organizations a single point of control over access, costs, and policies for Claude Code and Claude Desktop. It replaces per-developer cloud credentials, manual distribution of managed settings to developer

AWS centralizes access, spending, and governance for Claude Read More »

Claude Sonnet 5 includes safeguards against dangerous cyber use

Claude Sonnet 5 includes safeguards against dangerous cyber use 2026-07-01 at 11:45 By Anamarija Pogorelec Anthropic has introduced Claude Sonnet 5, the latest version of its general-purpose AI model, with improved reasoning, coding, tool use, and knowledge work capabilities. The model can make plans, use tools such as browsers and terminals, and complete tasks autonomously.

Claude Sonnet 5 includes safeguards against dangerous cyber use Read More »

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines 2026-06-29 at 17:28 By Ionut Arghire Indirect prompts hidden in a repository can lead to Claude Code spawning a reverse shell on the developer’s machine. The post Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines appeared first

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines Read More »

Best practices for AI in open-source work

Best practices for AI in open-source work 2026-06-25 at 08:00 By Anamarija Pogorelec Free and open source software developers us AI coding assistants such as Claude Code, Copilot CLI, Antigravity, and OpenCode in their daily work. The Software Freedom Conservancy responded to that trend with a set of recommendations for contributors who use these tools,

Best practices for AI in open-source work Read More »

Low-skilled attacker used Claude, Codex to breach 14 companies

Low-skilled attacker used Claude, Codex to breach 14 companies 2026-06-17 at 18:43 By Zeljka Zorz Researchers have long warned that AI agents could lower the skill floor for offensive cyber operations, and a recent report by OALABS (Open Analysis) researchers bears that out. After recovering and analyzing over 1,000 agent sessions from a compromised server

Low-skilled attacker used Claude, Codex to breach 14 companies Read More »

Open-source CI/CD abuse detector guards against stolen credential attacks

Open-source CI/CD abuse detector guards against stolen credential attacks 2026-06-15 at 08:30 By Sinisa Markovic CI/CD Abuse Detector is an open-source project that uses a large language model to flag suspicious changes to continuous integration and continuous deployment pipelines, workflows, and automation configurations. The repository contains drop-in templates for GitHub Actions, GitLab CI, and Azure

Open-source CI/CD abuse detector guards against stolen credential attacks Read More »

Claude now reviews and fixes vulnerabilities as you write code

Claude now reviews and fixes vulnerabilities as you write code 2026-05-27 at 16:37 By Sinisa Markovic Anthropic introduced a security-guidance plugin for Claude Code that reviews code changes for common vulnerabilities and helps Claude identify and fix issues during the same development session. The company says the plugin is designed to catch issues such as

Claude now reviews and fixes vulnerabilities as you write code Read More »

Anthropic Releases New Claude Sandbox, Security Guidance Plugin

Anthropic Releases New Claude Sandbox, Security Guidance Plugin 2026-05-27 at 09:56 By Eduard Kovacs The AI giant says the new plugin, which helps developers find vulnerabilities as they write code, has been used extensively internally. The post Anthropic Releases New Claude Sandbox, Security Guidance Plugin appeared first on SecurityWeek. This article is an excerpt from

Anthropic Releases New Claude Sandbox, Security Guidance Plugin Read More »

Anthropic adds 28 security and compliance integrations for Claude

Anthropic adds 28 security and compliance integrations for Claude 2026-05-25 at 21:27 By Sinisa Markovic AI tools are becoming part of everyday work in organizations, creating new security and oversight requirements as usage grows. To address that, Anthropic introduced 28 integrations with security and compliance tools that allow IT and security teams to manage Claude

Anthropic adds 28 security and compliance integrations for Claude Read More »

Anthropic Silently Patches Claude Code Sandbox Bypass

Anthropic Silently Patches Claude Code Sandbox Bypass 2026-05-20 at 16:04 By Eduard Kovacs The researcher who found it says the vulnerability could have been chained with a prompt injection to exfiltrate data. The post Anthropic Silently Patches Claude Code Sandbox Bypass appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Anthropic Silently Patches Claude Code Sandbox Bypass Read More »

Microsoft’s WinUI agent plugin trims token use by over 70% during development

Microsoft’s WinUI agent plugin trims token use by over 70% during development 2026-05-14 at 18:25 By Sinisa Markovic Microsoft published a plugin on May 13 that lets GitHub Copilot CLI and Claude Code drive the full WinUI 3 development cycle, from project scaffolding through signed MSIX packaging. The WinUI agent plugin ships one agent, eight

Microsoft’s WinUI agent plugin trims token use by over 70% during development Read More »

Claude Code OAuth Tokens Can Be Stolen Through Stealthy MCP Hijacking

Claude Code OAuth Tokens Can Be Stolen Through Stealthy MCP Hijacking 2026-05-07 at 17:33 By Kevin Townsend Mitiga researchers say attackers can silently redirect Claude Code MCP traffic, intercept OAuth tokens, and maintain persistent access to connected SaaS platforms. The post Claude Code OAuth Tokens Can Be Stolen Through Stealthy MCP Hijacking appeared first on

Claude Code OAuth Tokens Can Be Stolen Through Stealthy MCP Hijacking Read More »

AI Coding Agents Could Fuel Next Supply Chain Crisis

AI Coding Agents Could Fuel Next Supply Chain Crisis 2026-05-07 at 17:33 By Kevin Townsend “TrustFall” attack shows how AI coding agents can be manipulated into launching stealthy supply chain compromises. The post AI Coding Agents Could Fuel Next Supply Chain Crisis appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

AI Coding Agents Could Fuel Next Supply Chain Crisis Read More »

Claude Code, Gemini CLI, GitHub Copilot Agents Vulnerable to Prompt Injection via Comments

Claude Code, Gemini CLI, GitHub Copilot Agents Vulnerable to Prompt Injection via Comments 2026-04-16 at 12:11 By Eduard Kovacs A researcher has disclosed the details of the AI attack method he has named ‘Comment and Control’. The post Claude Code, Gemini CLI, GitHub Copilot Agents Vulnerable to Prompt Injection via Comments appeared first on SecurityWeek.

Claude Code, Gemini CLI, GitHub Copilot Agents Vulnerable to Prompt Injection via Comments Read More »

Anthropic tests user trust with ID and selfie checks for Claude

Anthropic tests user trust with ID and selfie checks for Claude 2026-04-16 at 11:16 By Sinisa Markovic Anthropic announced identity verification for Claude using government ID and selfie checks, becoming the first major AI chatbot to do so, a move that may prove unpopular with users. Having built its reputation around privacy in the AI

Anthropic tests user trust with ID and selfie checks for Claude Read More »

Agentic AI memory attacks spread across sessions and users, and most organizations aren’t ready

Agentic AI memory attacks spread across sessions and users, and most organizations aren’t ready 2026-04-14 at 09:15 By Mirko Zorz In this Help Net Security interview, Idan Habler, AI Security Researcher at Cisco, breaks down a threat most security teams haven’t named yet: agentic memory as an attack surface. Habler walks through MemoryTrap, a disclosed

Agentic AI memory attacks spread across sessions and users, and most organizations aren’t ready Read More »

Claude Code source leak exploited to spread malware

Claude Code source leak exploited to spread malware 2026-04-03 at 14:30 By Sinisa Markovic A source code leak involving Anthropic’s Claude Code tool quickly escalated into a cybersecurity threat, as attackers seized on the exposed files to lure developers into downloading malware disguised as “unlocked” versions of the software. Leaked Claude Code source code used

Claude Code source leak exploited to spread malware Read More »

Critical Vulnerability in Claude Code Emerges Days After Source Leak

Critical Vulnerability in Claude Code Emerges Days After Source Leak 2026-04-02 at 21:45 By Kevin Townsend Within days of each other, Anthropic first leaked the source code to Claude Code, and then a critical vulnerability was found by Adversa AI. The post Critical Vulnerability in Claude Code Emerges Days After Source Leak appeared first on

Critical Vulnerability in Claude Code Emerges Days After Source Leak Read More »

AI SOC vendors are selling a future that production deployments haven’t reached yet

AI SOC vendors are selling a future that production deployments haven’t reached yet 2026-03-26 at 12:32 By Mirko Zorz Vendors selling AI-powered security operations platforms have built their pitches around a consistent set of promises: autonomous threat investigation, dramatic reductions in analyst workload, and an accelerating path toward humanless operations. Practitioners buying and deploying those

AI SOC vendors are selling a future that production deployments haven’t reached yet Read More »

Scroll to Top