Tag: developer-tools

AI Agent Hackerbot-Claw Compromises Microsoft, DataDog, and CNCF GitHub Repositories

Pillar Security identified Hackerbot-Claw, an AI-powered attack agent that leveraged natural language capabilities to successfully compromise GitHub repositories from major organizations including Microsoft, DataDog, and the Cloud Native Computing Foundation. The agent, part of a campaign called Chaos Agent, demonstrated the ability to hijack developer tools through automated attacks.

Mar 9, 2026Hackread

ai-malwaregithub-securitysupply-chain

mediumPrivacy & Surveillance

Privacy Audit Reveals Extensive Data Collection by Popular Developer Tools

A comprehensive privacy audit of popular free developer tools revealed widespread collection of sensitive data including code snippets, project metadata, and user behavior patterns. The findings highlight significant privacy risks in the software development supply chain that most developers remain unaware of.

Mar 4, 2026Hacker News (filtered)

developer-toolsprivacy-auditdata-collection

mediumMalware & Threats

Supply Chain Worm Mimics Shai-Hulud Malware, Targets Developers Through npm and AI Tools

A new supply chain worm resembling the Shai-Hulud malware has been discovered spreading through malicious npm packages. The worm specifically targets developers using AI tools, representing a concerning evolution in supply chain attack techniques.

Feb 23, 2026Infosecurity Magazine

supply-chainnpmworm