The Next Web

Agentjacking: a fake bug report can hijack your AI coding agent

Tenet Security's 'Agentjacking' attack turns a fake Sentry error into code running on developer machines. It hijacked Claude Code, Cursor & Codex.

Warning Issued As Fake Claude Code Installer Attacks Confirmed

A fake Claude code installer can successfully exfiltrate decrypted cookies, passwords and payment methods from Chromium browsers. Here's how.
Hosted on MSN

Fake AI developer tools are distributing Amatera and AMOS malware

Kaspersky warns of malvertising campaign abusing Claude Code Fake download sites deliver Amatera infostealer on Windows, AMOS on macOS Developers risk exposing source code, corporate data, and ...

Fake Claude Code Installers Deliver Credential-Stealing Malware

Fake Claude Code install sites are pushing malware that steals API keys, developer credentials, crypto wallets, and other ...
Hosted on MSN

North Korean Lazarus hackers are using a fake coding test to steal passwords

North Korean state-sponsored threat actors Lazarus Group is evolving its “fake job” hacking campaign, researchers have warned. Lazarus has been creating fake LinkedIn accounts and posting fake job ads ...
TechRepublic

Fake Claude Code Spreads Malware to Windows, macOS Users

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows and macOS systems. Threat actors are exploiting a common developer habit — ...
Dark Reading

'InstallFix' Attacks Spread Fake Claude Code Sites

A new variation of the ClickFix technique is capitalizing on the popularity of Anthropic's Claude Code and other AI coding tools. Researchers at Push Security discovered the threat campaign, which ...
Bleeping Computer

Fake password manager coding test used to hack Python developers

Members of the North Korean hacker group Lazarus posing as recruiters are baiting Python developers with coding test project for password management products that include malware. The attacks are part ...