The Hacker News

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

Claude Code flaws allow remote code execution and API key theft via untrusted repositories; three bugs fixed across 2025–2026 releases.

Fake CAPTCHA attacks exploded by 563% last year: How to spot them and stay safe online

Fake CAPTCHA attacks exploded by 563% last year: How to spot them and stay safe online ...
Visual Studio Magazine

VS Code v1.110 Insiders: AI Agents Gain Native Browser Access and Global Instructions

The VS Code 1.110 cycle is putting more 'hands-on' capabilities into chat, led by native browser integration that lets AI agents interact with page elements, capture screenshots, and pull real-time ...
InfoWorld

New npm worm hits CI pipelines and AI coding tools

Researchers warn malicious packages can harvest secrets, weaponize CI systems, and spread across projects while carrying a dormant wipe mechanism.
WBUR

Endless Thread

Sarah Marshall of You're Wrong About has a new podcast about the Satanic Panic of the 1980s called The Devil You Know. She talks to Ben and Amory about the... When producer Grace Tatter sees a video ...