Shared entity / Threat pattern
ClawHavoc campaign plants 300+ malicious skills on a single marketplace to run infostealers
Unit 42 (Palo Alto Networks)
Policy dependency / Stack layer
IAPS warns on Kimi Claw: security and governance risks of Chinese-hosted 'always-on' AI agents
IAPS
Stack layer / Threat pattern
Malicious agent skills evade every scanner: HKUST's SkillCloak beats detectors 90%+ of the time, SkillDetonate catches 97%
Help Net Security
Stack layer / Threat pattern
CROSS-CATEGORY: Three Vendors in Three Unrelated Categories Shipped 'Agents That Supervise Other Agents' Inside Two Weeks
Vanta
Stack layer / Threat pattern
Snyk's Evo Agentic Development Security Hit GA June 29 — an Enforcement Layer That Polices MCP Servers and Coding Agents at Runtime
SiliconANGLE
Threat pattern / Contrast
Mid-Session Tool Injection weaponized against WebMCP agents via threshold poisoning and fake diagnostic events
Adversa AI
Stack layer / Contrast
Bind every MCP token to the exact tool subset it may invoke, and check scope before the handler body runs
Digital Applied
Policy dependency / Stack layer
HalluSquatting weaponizes LLM hallucinations to push botnet malware into agents
The Hacker News