Fake CVE exploit repos pull frint and skytext packages to steal researcher credentials, with servers still live as of July 1.
Mozilla 0DIN’s Claude Code demo shows how clean GitHub repos can expose AI coding agents to prompt injection, reverse shells, ...
.php cgi-bin admin images search includes .html cache wp-admin plugins modules wp-includes login themes templates index js xmlrpc wp-content media tmp language scripts user install css register feed ...