SecurityWeek

Bitwarden NPM Package Hit in Supply Chain Attack

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.
Security Boulevard

Unauthorized Users Reportedly Gain Access to Anthropic’s Mythos AI Model

An authorized group of users reportedly gained access to Anthropic's high-profile Claude Mythos Preview AI frontier model, which the vendor limited its release to specific organizations because of the ...

Lineaje Survey: 89% of Organizations Confident in AI Code Security Despite Only 17% Visibility

Research reveals a plateau in AI trust; identifies autonomous systems as the primary security hurdle for 2027SARATOGA, Calif.--(BUSINESS WIRE)--Lineaje, the full-lifecycle, autonomous management ...

Where Open Source Supply Chain Software Can Have Real Business Impact

By prioritizing transparency, businesses may reduce exposure to threats while maintaining development agility.
Australian Associated Press

TraceLink Launches OPUS Agents and Creates a New Paradigm for Supply Chain Management: Agentic Business Networks

TraceLink establishes the Agentic Business Network as the next operating model for supply chains and launches OPUS Agents—no-code enterprise AI agents that execute across the end-to-end supply network ...

Exiger is "Awardable" for DoW Work in P1 Solutions Marketplace

Exiger, the market-leading supply chain AI company and largest provider of supply chain technology to the U.S. Government, announced today that it has achieved "Awardable" status through the Platform ...
InfoQ

Anthropic Accidentally Exposes Claude Code Source via npm Source Map File

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...
Wired

Security News This Week: Hackers Are Posting the Claude Code Leak With Bonus Malware

A WIRED investigation based on Department of Homeland Security records this week revealed the identities of paramilitary Border Patrol agents who frequently used force against civilians during ...
Dark Reading

Claude Source Code Leak Highlights Big Supply Chain Missteps

Sophisticated cyberattacks targeting a variety of open source projects, including the Trivy security-scanner project, the widely used Axios Javascript package, and now Anthropic's accidental ...

In the wake of Claude Code's source code leak, 5 actions enterprise security leaders should take now

Gartner issued a same-day advisory after Anthropic leaked Claude Code's full architecture. CrowdStrike CTO Elia Zaitsev and Enkrypt AI CSO Merritt Baer weigh in on agent permissions and derived IP ...
Geeky Gadgets

8 Hidden Agent Features Exposed in the Recent Claude Code Source Code Leak

The recent leak of Claude Code’s source code has revealed over half a million lines of production code, offering an in-depth view of its architecture and functionality. According to Nate Herk, the ...
TechCrunch

Anthropic took down thousands of GitHub repos trying to yank its leaked source code — a move the company says was an accident

Anthropic accidentally caused thousands of code repositories on GitHub to be taken down while trying to pull copies of its most popular product’s source code off the internet. On Tuesday, a software ...