After details of a yet-to-be-announced model were revealed due to the company leaving unpublished drafts of documents and blog posts in a publicly visible data cache, Anthropic has been hit with yet ...

GlassWorm malware uses a Zig-based dropper to infect developer tools, stealing data and spreading across IDEs.

A simple human mistake has revealed all 500,000+ lines of code that make up Claude Code. How big a deal is that, really?

Anthropic last month reduced the TTL (time to live) for the Claude Code prompt cache from one hour to five minutes for many requests, but said this should not increase costs despite users reporting ...

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar ...

Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.

Anthropic has exposed Claude Code's source code, with a packaging error triggering a rapid chain reaction across GitHub and ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

The exposure traces back to version 2.1.88 of the @anthropic-ai/claude-code package on npm, which was published with a 59.8MB ...

AI firm Anthropic accidentally leaked its Claude Code source code via an npm package, revealing unreleased features like an ...