The Hacker News

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

Claude Code flaws allow remote code execution and API key theft via untrusted repositories; three bugs fixed across 2025–2026 releases.
TechJuice

Researchers Claim Malicious Repositories Turn Claude Code Into an Ideal Hacker’s Tool

Security researchers disclose critical vulnerabilities in Anthropic’s Claude Code that allow remote code execution and credential theft.
The Hacker News

Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs

Critical vulnerabilities in four widely used VS Code extensions could enable file theft and remote code execution across 125M installs.
ZDNet

Hacker code could unleash Windows worm

A hacker group released code designed to exploit a widespread Windows flaw, paving the way for a major worm attack as soon as this weekend, security researchers warned. The warning came Friday, after ...
ZDNet

Japanese hacker posts MS exploit code

A Japanese hacker has posted a program on the Net which gives remote attackers complete control of vulnerable servers running Microsoft's popular Web server software. The source code is thought to ...
eWeek

Facebook Open-Sources Hack Codegen

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. Facebook announced it is open-sourcing its Hack Codegen ...
InfoWorld

Facebook open-sources Hack code generator

Continuing with its open source endeavors, Facebook has open-sourced Hack Codegen, a library for automatically generating Hack code. Hack is Facebook’s spinoff of the PHP language, working with the ...