The Hacker News

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

Claude Code flaws allow remote code execution and API key theft via untrusted repositories; three bugs fixed across 2025–2026 ...
The Register on MSN

Claude collaboration tools left the door wide open to remote code execution

Anthropic fixed the flaws - but the AI-enabled attack surfaces remain Security vulnerabilities in Claude Code could have allowed attackers to remotely execute code on users' machines and steal API ...

Smart Banner Hub Opens Clustrauth™ API — Quantum-Safe Document Signing for Developers at $5 Per Signature

New REST API gives developers programmatic access to NIST FIPS 204 post-quantum document authentication — sign any ...
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
SecurityWeek

API Threats Grow in Scale as AI Expands the Blast Radius

Most API vulnerabilities are fast, remote, and easy to exploit. Attackers take full advantage of these attributes.
Security Boulevard

Integrating Advanced API Security with Imperva Gateway Environment

With APIs powering much of our modern applications, protecting them is no longer optional; it’s a necessity. This blog explores how to seamlessly integrate advanced API security into your Imperva ...