csis.org

AI-Driven Code Analysis: What Claude Code Security Can—and Can’t—Do

Q1: How does Claude Code Security function—and how does it differ from traditional static application security testing (SAST)? A1: Conventional rule-based static analysis uses pattern matching, ...

The Secret Service code names used by 12 presidents and first ladies, and the stories behind them

President Donald Trump's Secret Service code name is "Mogul." First lady Melania Trump's is "Muse." Here's what other ...

Minimus launches supply chain protection and minicli to automate open-source and container security as code

New York, United States, June 8th, 2026, TechnologyWire Minimus today announced the general availability of Minimus Supply ...

The ‘Miasma’ worm source code briefly leaked on GitHub

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain ...

Running Claude Code or Claude in Chrome? Here's the audit matrix for every blind spot your security stack misses

Four research teams found the same confused deputy failure in Claude across three surfaces in 48 hours. This audit matrix maps every blind spot and fix.

The Vibe Coding Productivity Paradox No One Wants To Talk About

Vibe coding hit 90% developer adoption in 2026 and a METR study found it makes experienced developers 19% slower. Here is ...

Pi Raises $35M to Make Security Scale as Fast as Code

After years of uncovering vulnerabilities at Microsoft and leading offensive security at Tesla, Pi's founders are now focused on fixing vulnerabilities at scale SAN FRANCISCO, CA / ACCESS Newswire / ...
InfoWorld

Meet Hades: The malware that lies to AI security agents

Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...

The Hidden Complexity In AI Infrastructure: Why Credentials Are The Real Attack Surface

The Weaviate incident in 2025 illustrated this clearly. A researcher discovered an exposed OpenAI API key in a public ...

AI finds critical flaw in Zcash, raising new security fears for crypto investors

A critical vulnerability discovered in the privacy-focused cryptocurrency Zcash (ZEC-USD) is raising concerns that artificial ...
SecurityWeek

VS Code Vulnerability Allows One-Click GitHub Token Theft

A researcher has disclosed details of a severe VS Code vulnerability that can be exploited to steal GitHub tokens and access ...

The head of Claude Code hasn’t written a line of code by hand in 8 months

Boris Cherny was asked at Brainstorm Tech if he was concerned about the rapid progress of AI: "Yes." ...