Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.

Within days of each other, Anthropic first leaked the source code to Claude Code, and then a critical vulnerability was found ...

Anthropic has accidentally exposed Claude Code's full 512,000-line TypeScript source via an npm source map, revealing ...

Threat actors are evading phishing detection in campaigns targeting Microsoft accounts by abusing the no-code app-building ...

The leak provides competitors—from established giants to nimble rivals like Cursor—a literal blueprint for how to build a ...

A new White House app promises direct access to the administration, but its data collection and app behavior raise some ...

The White House app requests extensive permissions on Android. A technical analysis also raises data protection and security ...

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar ...

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...

A missed step in a manual deployment process exposed the internal workings of one of AI's hottest coding tools—and briefly ...

Computer security boffins have conducted an analysis of 10 million websites and found almost 2,000 API credentials strewn across 10,000 webpages.

IntroductionOn March 31, 2026, Anthropic accidentally exposed the full source code of Claude Code (its flagship ...