LodeHQSubscribe →

Claude Code hijack, GodDamn blinds EDR, Injective crypto drain

Infosec · 2026-07-09

Vulnerabilities & Exploits
Indirect Prompt Injection Lets Claude Code Hijack Your Machine from a Clean Repo6 MIN

Researchers Andre Hall and Miller Engelbrecht show how Claude Code can be tricked into opening a reverse shell by chaining a benign README, Makefile and test file, with the actual payload fetched from a DNS TXT record at runtime. The attack demonstrates full system compromise without any malicious code in the repository.

Threats & Malware
China and India espionage ops converge on Pakistan’s Balochistan Police15 MIN

SentinelOne tracked separate Chinese and Indian cyber‑espionage campaigns that both compromised the Balochistan Police’s web portals between 2024 and 2026. The actors planted implants and used tools like PlugX and Cobalt Strike, seeking biometric and criminal data to monitor internal security and protect their nationals. Their overlap signals the high value of Pakistani law‑enforcement intel.

Malicious Injective SDK npm package exfiltrated crypto wallets via fake telemetry2 MIN

A compromised GitHub account let attackers publish version 1.20.21 of @injectivelabs/sdk‑ts, which silently captured wallet private keys and mnemonic seeds when SDK functions ran. The code exfiltrated the data to an Injective Labs endpoint, affecting developers who updated the package before the fix. Rotate wallets and purge the infected version immediately.

GodDamn ransomware hijacks signed PoisonX driver to blind endpoint security3 MIN

Symantec’s Threat Hunter Team discovered GodDamn ransomware leveraging a Microsoft‑signed PoisonX kernel driver to disable AV/EDR defenses via a BYOVD attack. The same campaign combined AnyDesk remote access, NirSoft credential theft tools, and PsExec lateral movement, marking a sophisticated escalation in ransomware evasion tactics.

Breaches & Industry News
CISA contains contractor‑leaked cloud keys, tightens repo controls5 MIN

CISA disclosed that a contractor accidentally published AWS GovCloud keys and build code in a personal GitHub repo, prompting an immediate shutdown and credential rotation. The breach was contained within CISA's environment, with no customer data exposed, and led to tighter repository controls across the agency.

Privacy, Policy & Governance
Greek surveillance victims sue Intellexa for €1 million each4 MIN

Eight Greeks targeted by the Predator spyware have filed a civil suit against Intellexa SA and thirteen associated individuals, demanding €1 million in moral damages per plaintiff. The case revives the 2022 ‘Predatorgate’ scandal that toppled Greece’s intelligence chief and sparked a government confidence vote.

EU’s ‘Chat Control’ Scan Rule Revives After MEP Vote Misses Super‑majority2 MIN

MEPs won the vote tally but failed to reach the 360‑seat super‑majority needed to block the interim CSAM‑scanning rule. The client‑side scanning proposal, dubbed ‘Chat Control’, is back on the table for further negotiation, extending privacy concerns across the EU.

China warns Claude Code of backdoor that could leak user data1 MIN

Chinese cybersecurity platform flagged Anthropic’s Claude Code versions 2.1.91‑2.1.196 as containing a backdoor that can transmit location and identity to remote servers. Users must uninstall or upgrade to 2.1.204, highlighting escalating geopolitical scrutiny of AI coding tools.

Research & Tools
npm 12 blocks install scripts by default, tightening JavaScript supply chain security1 MIN

npm v12 flips the default to disallow preinstall, install and postinstall scripts, and also blocks Git and remote URL dependencies unless explicitly approved. This forces developers to opt‑in to any lifecycle code, cutting a major attack vector that fueled recent supply‑chain breaches.

Adversarial HalluSquatting Lets AI Assistants Build Massive Botnets2 MIN

Researchers reveal a prompt‑injection technique called HalluSquatting that hijacks the tendency of LLMs to hallucinate repository or skill names. By pre‑registering these fake identifiers, attackers can trick nine popular AI coding assistants into fetching malicious code, achieving remote execution and scaling botnet deployment at unprecedented scale.

Get Infosec in your inbox, every issue.
Subscribe free
Privacy · Terms · About · Contact
© 2026 LodeHQ