The Hacker News

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

Claude extension flaw enabled silent prompt injection via XSS and weak allowlist, risking data theft and impersonation until ...

Experts warn Claude Chrome extension could let hackers hijack your online browsing

Prompt injection attacks can now be carried out in browser extensions, experts warn.

Anthropic hands Claude Code more control, but keeps it on a leash

Anthropic’s new auto mode for Claude Code lets AI execute tasks with fewer approvals, reflecting a broader shift toward more ...

Researchers found a way to steal data from Claude.ai using Google Ads

A legitimate Google ad could lead to data exfiltration through a chain of Claude flaws.

Anthropic unchains Claude Code with auto mode, allowing it to choose its own permissions

Anthropic PBC is taking the leash off its popular artificial intelligence coding tool Claude Code, introducing a new feature ...

OpenAI upgrades Codex to automate your workflows - and compete better with Claude Code

OpenAI upgrades Codex to automate your workflows - and compete better with Claude Code ...
Android

Anthropic’s Claude Sonnet 4.5 Can Code for Up To 30 Hours Straight

Anthropic launched Claude Sonnet 4.5, claiming the title of the world’s best coding model. The key breakthrough is its ability to code autonomously for up to 30 hours, a massive increase in endurance.