A developer deliberately placed sabotage code in jqwik 1.10.0 to manipulate AI agents into deleting code, revealing a new security vulnerability in the open-source software supply chain.
Invisible HTML comments in GitHub Issues could trick Claude Code AI into reading protected environment variables like ANTHROPIC_API_KEY due to insufficient restrictions on the Read tool.
Hades is a supply-chain malware that infects Python packages with specialized prompt-injection logic to compromise both automated LLM scanners and systems with memory access.
Cybercriminals are increasingly attacking AI-based protection mechanisms directly, while AI-powered website builders and OAuth-based consent phishing open new attack surfaces.
Attackers can inject malicious commands into messenger messages through fake context alignment, which Gemini processes undetected and uses to control authorized devices or misuse data.
Lockdown Mode restricts ChatGPT functions to prevent data exfiltration through prompt injection attacks and is being rolled out gradually to all user types.