Cyber Daily

Code Red: North Korean hackers behind compromised Axios npm package

Experts pin attack on “one of npm's most depended-on packages” on hackers backed by the Democratic People’s Republic of Korea ...

Anthropic's Boris Cherny, creator of $2.5 billion coding tool, makes a ‘clarification’ the Claude Code leak: ‘It's never an individual's fault, it’s the…’

A missed step in a manual deployment process exposed the internal workings of one of AI's hottest coding tools—and briefly ...

Security study finds thousands of API credentials exposed on the web for years

Researchers scan 10 million websites and uncover thousands of exposed API keys quietly granting access to cloud systems and ...
ExtremeTech

Claude Code's Own Full Source Code Leaked

A simple human mistake has revealed all 500,000+ lines of code that make up Claude Code. How big a deal is that, really?

Anthropic accidentally exposed Claude Code source, raising security concerns

The exposure traces back to version 2.1.88 of the @anthropic-ai/claude-code package on npm, which was published with a 59.8MB ...
WinBuzzer

Claude Code Source Leak Exposes Anti-Distillation Traps

Anthropic's Claude Code source has leaked via a packaging error, exposing anti-distillation traps, an undercover mode, and scaffolding for an unreleased agent.
GovInfoSecurity

Backdooring of JavaScript Library Axios Tied to North Korea

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

3 ways to maximize your charitable impact in the wake of OBBBA

The One Big Beautiful Bill Act was signed into law last year, making sweeping changes to the tax code, many of which will affect philanthropic taxpayers.

Popular web-code library poisoned by malicious release

'This is unironically a malware nuclear missile.' ...

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
The Caledonian-Record

Anthropic releases part of AI tool source code in 'error'

Anthropic accidentally released part of the internal source code for its AI-powered coding assistant Claude Code due to ...