Infosecurity Magazine

Fake Claude Code Page Pushes PowerShell Stealer at Devs

The helper's sole function is to invoke the browser's IElevator2 COM interface, introduced in Chrome 144, to recover the ...

Mac Users Warned Over Fake Claude Install Instructions

Hackers are using Google Ads and Claude shared chats to target Mac users with fake setup instructions that can install ...

Warning Issued As Fake Claude Code Installer Attacks Confirmed

A fake Claude code installer can successfully exfiltrate decrypted cookies, passwords and payment methods from Chromium ...
Bleeping Computer

Claude Code leak used to push infostealer malware on GitHub

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar information-stealing malware. Claude Code is a terminal-based AI agent from ...

Hackers abuse Google ads, Claude.ai chats to push Mac malware

Attackers are abusing Google Ads and legitimate Claude.ai shared chats in an active malvertising campaign. Users searching ...
SecurityWeek

Claude Code OAuth Tokens Can Be Stolen Through Stealthy MCP Hijacking

Claude Code vulnerability allows attackers to intercept OAuth tokens, enabling access to connected SaaS platforms and ...
VentureBeat

In the wake of Claude Code's source code leak, 5 actions enterprise security leaders should take now

Every enterprise running AI coding agents has just lost a layer of defense. On March 31, Anthropic accidentally shipped a 59.8 MB source map file inside version 2.1. ...