GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...
Microsoft

Contagious Interview: Malware delivered through fake developer job interviews

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites

An SQL injection vulnerability in Ally, a WordPress plugin from Elementor for web accessibility and usability with more than 400,000 installations, could be exploited to steal sensitive data without ...
IEEE

DemoCraft: Using In-Context Learning to Improve Code Generation in Large Language Models

Abstract: Producing executable code from natural-language directives via Large Language Models (LLMs) involves obstacles like semantic uncertainty and the requirement for task-focused context ...
newsbytesapp.com

Claude Code's launch hits IBM's stock: What's the connection

IBM's stock dropped on Monday after Anthropic launched Claude Code, an AI tool that automates updating COBOL—the decades-old code that handles an estimated 95% of ATM transactions in the United States ...
GitHub

GitHub - anthropics/claude-code-action

A general-purpose Claude Code action for GitHub PRs and issues that can answer questions and implement code changes. This action intelligently detects when to activate based on your workflow ...
NDTV

Claude Code Security: How Anthropic Is Using AI To Find Software Flaws

US-based AI company Anthropic has launched Claude Code Security, a new feature inside its web-based Claude Code platform. The capability is now available in a limited research preview for Enterprise ...