The Hacker News

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

Claude Code flaws allow remote code execution and API key theft via untrusted repositories; three bugs fixed across 2025–2026 releases.
TechJuice

Researchers Claim Malicious Repositories Turn Claude Code Into an Ideal Hacker’s Tool

Security researchers disclose critical vulnerabilities in Anthropic’s Claude Code that allow remote code execution and credential theft.
The Hacker News

Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs

Critical vulnerabilities in four widely used VS Code extensions could enable file theft and remote code execution across 125M installs.
CRN

Samsung Galaxy Source Code Targeted By Hacker Group Lapsus$

The hacker group swiped sensitive source code and biometric unlocking the company’s core mobile device line. Hackers have stolen Samsung’s source code and biometric unlocking algorithms for its Galaxy ...
eWeek

Facebook Open-Sources Hack Codegen

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. Facebook announced it is open-sourcing its Hack Codegen ...