Microsoft

Securing AI agents: When AI tools move from reading to acting

MCP tool poisoning turns trusted AI agents into a control plane for data loss. Learn how threat actors manipulate tool ...
SecurityWeek

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Infosecurity Magazine

ClickFix Now Cybercriminals' Favorite Malware Delivery Technique

The ClickFix social engineering technique has become the leading means of cybercriminals delivering malware to victims.