Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Two malicious packages were discovered on npm (Node package manager) that covertly patch legitimate, locally installed packages to inject a persistent reverse shell backdoor. This way, even if the ...
An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
Latest campaign from the group also known as Lotus Blossom and Lotus Panda targeted Southeast Asian organizations with a new backdoor variant, Chrome credential stealers, and a reverse shell program.