WARPTECHNEWS · LAB
HomeAIBusinessTechArchive
WARPTECH LAB NEWS

Warptech Lab News aggrega le notizie più rilevanti da oltre 700 fonti internazionali, con classificazione AI, TL;DR sintetici e timeline cluster su singole storie.

Navigazione

  • Home
  • Archivio
  • Editor's Brief
  • Cerca
  • Il tuo account
  • Newsletter tech/AI

Informazioni legali

  • Privacy Policy
  • Termini di servizio
  • Cookie Policy

© 2026 Sparktech S.R.L. — Tutti i diritti riservati. Sito gestito e manutenuto da Sparktech S.R.L.

Sede legale: Corso Libertà 55, 13100 Vercelli (VC), Italia · P.IVA / C.F. 02835910023 · Contatti: admin@warptechlab.com

Home
Storia in 4 fonti

Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It

AI Now’s Friendly Fire PoC shows Claude Code and Codex running README-planted payloads on hosts when autonomous command approval is enabled.

Raccontata dathehackernews.comtheregister.comthenextweb.comsecurityweek.com

Confronto fonti

4 prospettive sulla stessa storia
AI · summaries
thehackernews.comStai leggendo11 h fa

Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It

AI Now’s Friendly Fire PoC shows Claude Code and Codex running README-planted payloads on hosts when autonomous command approval is enabled.

originale
theregister.com1 g fa

Bug in top AI coding agents shows that Unix-era security headaches never really die

'GhostApproval' problem highlights human-in-the-loop fails

Leggi questa versione → originale
securityweek.com7 h fa

AI Coding Tools Tricked Into Hacking Developer Machine via Decades-Old Technique

Several AI coding assistants were tricked into facilitating developer machine hacking via an attack technique that has been known for decades.

Leggi questa versione → originale
thenextweb.com1 g fa

GhostApproval bug breaks 6 top AI coding agents

Wiz's 'GhostApproval' uses an old symlink trick to make six AI coding agents, from Amazon Q to Cursor, write outside the sandbox and hand over the box.

Leggi questa versione → originale

Timeline cronologica

  1. lunedì 6 luglio 2026·thehackernews.com

    SkillCloak Lets Malicious AI Agent Skills Evade Static Scanners with Self-Extracting Packing

    Learn how malicious AI agent skills easily bypass static scanners. Discover how runtime checking secures tools like Claude Code and OpenClaw.

  2. mercoledì 8 luglio 2026·theregister.com

    Bug in top AI coding agents shows that Unix-era security headaches never really die

    'GhostApproval' problem highlights human-in-the-loop fails

  3. mercoledì 8 luglio 2026·thenextweb.com

    GhostApproval bug breaks 6 top AI coding agents

    Wiz's 'GhostApproval' uses an old symlink trick to make six AI coding agents, from Amazon Q to Cursor, write outside the sandbox and hand over the box.

  4. mercoledì 8 luglio 2026·thehackernews.com

    AI Coding Agents Found Triggering Endpoint Security Rules Built to Catch Attackers

    Sophos says Claude Code, Cursor, and Codex triggered Windows endpoint rules for credential access, LOLBin downloads, and persistence.

  5. giovedì 9 luglio 2026·thehackernews.com

    GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents

    Wiz says GhostApproval abuses symlinks so AI coding agents write to SSH keys or shell startup files while showing benign paths.

  6. giovedì 9 luglio 2026·thehackernews.com

    Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It

    AI Now’s Friendly Fire PoC shows Claude Code and Codex running README-planted payloads on hosts when autonomous command approval is enabled.

  7. giovedì 9 luglio 2026·securityweek.com

    AI Coding Tools Tricked Into Hacking Developer Machine via Decades-Old Technique

    Several AI coding assistants were tricked into facilitating developer machine hacking via an attack technique that has been known for decades.