Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Multiple weaponized proof-of-concept (PoC) exploits on GitHub delivered a Python-based remote access trojan (RAT) called ChocoPoC that can execute commands and steal sensitive data. However, ChocoPoC ...
Attackers are hiding a data-stealing trojan inside fake exploit code aimed at the people who hunt bugs for a living. The malware, called ChocoPoC, travels in Python proof-of-concept (PoC) repositories ...
We spent over half a million dollars in R&D to build a tool that makes stock research faster, sharper, and smarter. Our analysts use it every day, and now, you can too.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results