SecurityWeek

New Attack Abuses Claude Code and Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
InfoWorld

Making Windows a developer platform, again

Microsoft is delivering tools to quickly configure Windows PCs as workstations for Windows and Linux development.

digna Introduces Python SDK and Docker Deployment in Release 2026.06

Vienna, Austria, June 25, 2026 -- digna, the European data quality and observability platform, today announced the release of ...

Python dev saved from disaster by intuition... and AI

Python developer Roman Imankulov nearly took the bait. The fact that he didn't can be chalked up to human intuition and AI ...
Globes

Rafael signs huge air defense deal with Romania

The tender that Rafael won was approved by the Romanian parliament in Bucharest in 2020, and the procurement process began in ...

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
How-To Geek on MSN

I stopped maintaining 30 JSON files by hand with this one tool

Connect all your configuration files and autogenerate code—Jsonnet is the missing piece for large code bases.
The Hacker News

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

SentinelOne details Gaslight, a Rust-based macOS implant linked to North Korea-aligned actors that uses prompt injection to ...
Dark Reading

'Cordyceps': Mushrooming Malicious Pull Requests Threaten Developer Workflows

By targeting the automated workflows around repositories with targeted pull requests, attackers can potentially target ...
Windows Report

Microsoft's Linux U-Turn Continues With Its Own Azure Linux Distribution

Linux now powers much of Azure, and Microsoft maintains its own Linux distribution to support cloud infrastructure and ...
Microsoft

StealC and Amadey: Breaking down infostealers and the cybercrime services that deliver them

On June 24, 2026, Microsoft’s Digital Crimes Unit (DCU) facilitated the takedown, suspension, and blocking of domains that ...
SecurityWeek

Exploitable CI/CD Vulnerabilities Expose Millions of Repositories to Hijacking

Cordyceps, a systemic class of exploitable CI/CD vulnerabilities, allows unauthenticated attackers to hijack developer ...