{"id":3489215,"date":"2026-04-05T08:56:05","date_gmt":"2026-04-05T08:56:05","guid":{"rendered":"https:\/\/techingeek.com\/index.php\/2026\/04\/05\/hackers-distribute-claude-code-breach-with-additional-malware\/"},"modified":"2026-04-05T08:56:05","modified_gmt":"2026-04-05T08:56:05","slug":"hackers-distribute-claude-code-breach-with-additional-malware","status":"publish","type":"post","link":"https:\/\/techingeek.com\/index.php\/2026\/04\/05\/hackers-distribute-claude-code-breach-with-additional-malware\/","title":{"rendered":"Hackers Distribute Claude Code Breach with Additional Malware"},"content":{"rendered":"
<\/div>\n

An investigation by WIRED<\/span> utilizing records from the Department of Homeland Security this week uncovered the identities of paramilitary Border Patrol agents<\/a> who often employed force against civilians during Operation Midway Blitz in Chicago last autumn. Several of the agents, according to WIRED, also participated in similar operations in various states across the US.<\/p>\n

Customs and Border Protection might want to consider safeguarding its sensitive facility information. Through simple Google searches, WIRED found flashcards created by users on the online learning site Quizlet that included gate codes for CBP facilities<\/a> and more.<\/p>\n

In an unusual decision, Apple this week issued \u201cbackported\u201d patches for iOS 18<\/a> to safeguard millions of users still utilizing the older operating system from the DarkSword hacking method<\/a> that was discovered being used in the wild. Found in March, DarkSword enables attackers to compromise iPhones that simply visit a website containing the takeover tools. Apple first encouraged users to upgrade to the latest version of its OS, iOS 26, but eventually released the iOS 18 patches as DarkSword continued to proliferate.<\/p>\n

The US-Israel conflict with Iran entered its second month this week, with Iran issuing threats to initiate attacks on over a dozen US companies<\/a>, including major tech firms like Apple, Google, and Microsoft, which operate offices and data centers in the Gulf region. The perilous conflict, with no clear resolution in sight, continues to devastate the global economy as shipping crews remain stuck in the Strait of Hormuz<\/a>, a vital trade passage. Meanwhile, some are starting to ponder what might occur if US strikes inflict significant damage on Iran\u2019s nuclear sites<\/a>.<\/p>\n

And that\u2019s not everything! Each week, we compile the security and privacy updates we didn\u2019t delve into more comprehensively. Click on the headlines to read the complete stories. And stay safe out there.<\/p>\n

Earlier this week, a security expert pointed out that Anthropic inadvertently made the source code for its well-known vibe-coding tool, Claude Code, public. Instantly, individuals began sharing the code on the developer platform GitHub. But be cautious if you wish to download some of those repositories: BleepingComputer warns that some of the individuals posting are actually hackers who have embedded a piece of infostealer<\/a> malware within the lines of code.<\/p>\n

Anthropic, for its part, has been actively working to eliminate copies of the leak (malware-laden or otherwise) by sending out copyright takedown requests. The Wall Street Journal <a href="https:\/\/www.wsj.com\/tech\/ai\/anthropic-races-to-contain-leak-of-code-behind-claude-ai-agent-4bc5acc7?gaa_at=eafs&gaa_n=AWEtsqe0YqHxbezGhAXCQMkTM704xLIzPtDKH78qcGbyQlXZjxZuAmm8TxwV4QxfOvM%3D&gaa_ts=69<\/p>\n","protected":false},"excerpt":{"rendered":"

<\/div>\n

An investigation by WIRED<\/span> utilizing records from the Department of Homeland Security this week uncovered the identities of paramilitary Border Patrol agents<\/a> who often employed force against civilians during Operation Midway Blitz in Chicago last autumn. Several of the agents, according to WIRED, also participated in similar operations in various states across the US.<\/p>\n

Customs and Border Protection might want to consider safeguarding its sensitive facility information. Through simple Google searches, WIRED found flashcards created by users on the online learning site Quizlet that included gate codes for CBP facilities<\/a> and more.<\/p>\n

In an unusual decision, Apple this week issued \u201cbackported\u201d patches for iOS 18<\/a> to safeguard millions of users still utilizing the older operating system from the DarkSword hacking method<\/a> that was discovered being used in the wild. Found in March, DarkSword enables attackers to compromise iPhones that simply visit a website containing the takeover tools. Apple first encouraged users to upgrade to the latest version of its OS, iOS 26, but eventually released the iOS 18 patches as DarkSword continued to proliferate.<\/p>\n

The US-Israel conflict with Iran entered its second month this week, with Iran issuing threats to initiate attacks on over a dozen US companies<\/a>, including major tech firms like Apple, Google, and Microsoft, which operate offices and data centers in the Gulf region. The perilous conflict, with no clear resolution in sight, continues to devastate the global economy as shipping crews remain stuck in the Strait of Hormuz<\/a>, a vital trade passage. Meanwhile, some are starting to ponder what might occur if US strikes inflict significant damage on Iran\u2019s nuclear sites<\/a>.<\/p>\n

And that\u2019s not everything! Each week, we compile the security and privacy updates we didn\u2019t delve into more comprehensively. Click on the headlines to read the complete stories. And stay safe out there.<\/p>\n

Earlier this week, a security expert pointed out that Anthropic inadvertently made the source code for its well-known vibe-coding tool, Claude Code, public. Instantly, individuals began sharing the code on the developer platform GitHub. But be cautious if you wish to download some of those repositories: BleepingComputer warns that some of the individuals posting are actually hackers who have embedded a piece of infostealer<\/a> malware within the lines of code.<\/p>\n

Anthropic, for its part, has been actively working to eliminate copies of the leak (malware-laden or otherwise) by sending out copyright takedown requests. The Wall Street Journal <a href="https:\/\/www.wsj.com\/tech\/ai\/anthropic-races-to-contain-leak-of-code-behind-claude-ai-agent-4bc5acc7?gaa_at=eafs&gaa_n=AWEtsqe0YqHxbezGhAXCQMkTM704xLIzPtDKH78qcGbyQlXZjxZuAmm8TxwV4QxfOvM%3D&gaa_ts=69<\/p>\n","protected":false},"author":2,"featured_media":3489216,"comment_status":"open","ping_status":"closed","sticky":false,"template":"Default","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[92,84,353,70,352,116,354,67,69,351],"class_list":["post-3489215","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-apple","tag-artificial-intelligence","tag-cisco","tag-cybersecurity","tag-fbi","tag-hacking","tag-ios","tag-malware","tag-security","tag-security-roundup"],"_links":{"self":[{"href":"https:\/\/techingeek.com\/index.php\/wp-json\/wp\/v2\/posts\/3489215"}],"collection":[{"href":"https:\/\/techingeek.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/techingeek.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/techingeek.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/techingeek.com\/index.php\/wp-json\/wp\/v2\/comments?post=3489215"}],"version-history":[{"count":0,"href":"https:\/\/techingeek.com\/index.php\/wp-json\/wp\/v2\/posts\/3489215\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/techingeek.com\/index.php\/wp-json\/wp\/v2\/media\/3489216"}],"wp:attachment":[{"href":"https:\/\/techingeek.com\/index.php\/wp-json\/wp\/v2\/media?parent=3489215"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/techingeek.com\/index.php\/wp-json\/wp\/v2\/categories?post=3489215"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/techingeek.com\/index.php\/wp-json\/wp\/v2\/tags?post=3489215"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}