Policy dependency / Stack layer
HalluSquatting weaponizes LLM hallucinations to push botnet malware into agents
The Hacker News
Stack layer / Threat pattern
CASP Report Documents How Boko Haram Operationalized Frontier AI for Attack Planning
CASP
Stack layer / Threat pattern
Ghostcommit hides prompt injection in PNG files to make AI coding agents exfiltrate repo secrets
SecNews
Stack layer / Threat pattern
Mitigating Taint-Style MCP Server Vulnerabilities Without Touching Server Code (SPELLSMITH)
arXiv
Stack layer / Threat pattern
Tip: Update Headless Claude Code to v2.1.207 — Managed-Settings Consent Was Silently Auto-Recorded
Claude Code Changelog
Stack layer / Threat pattern
Friendly Fire: auto-approve coding agents run attacker code during security scans
SecurityWeek
Stack layer / Threat pattern
Unit 42: AI-agent npm packages become a prime supply-chain target in H1 2026
Unit 42 (Palo Alto Networks)
Policy dependency / Stack layer
First Recon AI ships AI Security Runtime GA — inline policy enforcement on every agent-to-agent and agent-to-tool call
Business Wire