How indirect prompt injection attacks on AI work - and 6 ways to shut them down

Cybercriminals are tricking AI into leaking your data, executing code, and sending you to malicious sites. Here's how.
The Hacker News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...
CSO Online

Microsoft issues out-of-band patch for critical security flaw in update to ASP.NET Core

Patching is not enough: applications embedding the insecure library will need to be rebuilt, and affected tokens and cookies ...
Forbes

Microsoft Confirms New And Widespread 2FA Code Attacks Ongoing

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. This voice experience is generated by AI. Learn more. This ...
Dark Reading

Claude Source Code Leak Highlights Big Supply Chain Missteps

Sophisticated cyberattacks targeting a variety of open source projects, including the Trivy security-scanner project, the widely used Axios Javascript package, and now Anthropic's accidental ...
PC World

Anthropic leaked its own Claude Code source code by mistake

PCWorld reports that Anthropic accidentally leaked over 500,000 lines of source code for its AI coding tool Claude Code due to a misconfigured .map file in its npm package. The leak revealed ...
Bloomberg L.P.

Anthropic Accidentally Exposes System Behind Claude Code

Anthropic PBC inadvertently released internal source code behind its popular artificial intelligence-powered Claude coding assistant, raising questions about the security of an AI model developer that ...
TechSpot

Anthropic accidentally exposed Claude Code source, raising security concerns

What we know so far: Anthropic is facing renewed scrutiny from the AI and security communities after internal source code for Claude Code – its fast-growing agentic development environment – was ...
Forbes

What Anthropic’s Leak Means For The Coming Wave Of ‘Dark Code’

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. The leak, triggered by a human error, exposed 500,000 lines of source code of Anthropic’s ...
Reuters

Microsoft, Chevron and Engine No. 1 sign exclusive deal for power supply

March 31 (Reuters) - Microsoft (MSFT.O), opens new tab, Chevron (CVX.N), opens new tab and investment fund Engine No. 1 have entered into an exclusivity agreement for power generation and supply, the ...
Gizmodo

Source Code for Anthropic’s Claude Code Leaks at the Exact Wrong Time

Anthropic just cannot keep a lid on its business. After details of a yet-to-be-announced model were revealed due to the company leaving unpublished drafts of documents and blog posts in a publicly ...
Ars Technica

Entire Claude Code CLI source code leaks thanks to exposed map file

The entire source code for Anthropic’s Claude Code command line interface application (not the models themselves) has been leaked and disseminated, apparently due ...