Official SAP npm packages compromised to steal credentials

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...
ExtremeTech

Claude-Powered AI Agent Deletes Startup's Database After 'Guessing' Its Way Through Rules

A Claude-powered coding agent has deleted a startup's entire production database, leaving no up-to-date backups behind. The ...

ClickUp Data Leak Exposes Enterprise Emails for Over a Year

A hardcoded ClickUp API key exposed hundreds of corporate and government emails for over a year, raising new SaaS security ...

A founder says Cursor's AI agent deleted his startup's database, causing chaos for customers

The founder of PocketOS said that a Cursor AI agent running on Anthropic's Claude Opus model was behind the "destructive ...

AI coding agent running Claude wiped a startup's database (and its backups) in 9 seconds

PocketOS, which provides software to car rental businesses, was using the agent against live infrastructure rather than ...