Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with running a seemingly benign GitHub repository could execute a malicious payload that is ...
Tech Times

Cisco SD-WAN Zero-Day Exploit: Mandiant Reveals Malicious CSV Opened Root Shell

Cisco SD-WAN zero-day CVE-2026-20245 was exploited months before disclosure: Mandiant reveals how a malicious CSV file ...
Infosecurity Magazine

macOS Backdoor Uses Prompt Injection to Evade AI Triage

A North Korea-linked macOS backdoor has been caught hiding a prompt injection that targets malware analyst's AI tools, rather ...

AWS debuts Lambda MicroVMs with up to 8 hours runtime

AWS has introduced Lambda MicroVMs, built on its Firecracker virtual machine monitor, which can run isolated Linux containers ...
GameSpot

Wuthering Waves Codes March 2026 For Free Astrite, Shell Credits, And More

March 23, 2026: We checked the validity of our Wuthering Waves codes. With plentiful gacha games available for your enjoyment, it takes a strong one to retain player attention. Thankfully, Wuthering ...
Ars Technica

Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code

The controversy over vibe coding reached a new high this week after a developer added hidden instructions to his open source Java testing app to sabotage projects performed by AI coding agents. The ...
MIT Technology Review

Anthropic’s Code with Claude showed off coding’s future—whether you like it or not

As tools like Claude Code get better, more and more developers are happy to hand off coding tasks to them. The way software gets built has changed for good. The vibes were strong at Code with Claude, ...
TheStreet.com

Shell CEO sends blunt message on oil and the economy

Shell's CEO used a specific phrase on the earnings call that captures how serious the global oil supply situation has become. The shortage Sawan described has an unusual characteristic that means it ...
CNBC

Shell tops profit estimates as Iran war boosts oil price, cuts share buybacks

Oil giant Shell posted bumper profit of $6.92 billion through the first quarter as the Iran war sent fossil fuel prices soaring. The London-listed energy major cut the pace of its quarterly buyback to ...

Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not the model.

Six teams exploited Claude Code, Copilot, Codex, and Vertex AI in nine months. Every attack hit runtime credentials that IAM tools never tracked.
InfoQ

CodeGuardian: a Model Context Protocol Server for AI-Assisted Code Quality Analysis and Security Scanning

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...