Anthropic announced Claude Code Security, an embedded capability in Claude Code that scans customer codebases for vulnerabilities and suggests patches, initially rolling out to a limited set of enterprise/team customers for testing. The company said the feature was stress-tested via internal red-teaming, Capture-the-Flag exercises, and collaboration with Pacific Northwest National Laboratory, and positioned it as a way to reduce reliance on manual security reviews as AI-assisted “vibe coding” increases and attackers also use AI to accelerate weakness discovery.
In parallel, Anthropic released Claude Sonnet 4.6, emphasizing improved coding performance, stronger “computer use” capabilities, and expanded developer tooling (e.g., adaptive/extended thinking modes, beta context compaction, and API tools for web search/fetch and code execution). Separate commentary highlighted the security risk of agentic coding assistants (e.g., Claude Code, Cursor, GitHub Copilot) operating with broad privileges—file access, shell execution, and secret handling—and argued that the emerging Model Context Protocol (MCP) ecosystem needs stronger, future-proof identity controls; additional industry guidance promoted MLSecOps as a way to integrate security into AI/ML development lifecycles, though it did not report a specific incident or vulnerability.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
6 events from the most recent confirmed update back to the earliest known activity.
Anthropic launched Project Glasswing to give a limited group of defensive security partners and critical software infrastructure organizations access to Claude Mythos Preview. The initiative was framed around accelerating triage, validation, and remediation of AI-discovered vulnerabilities rather than focusing only on bug discovery.
Security researchers publicly criticized Anthropic's vulnerability-finding claims, arguing that only a small number of the reported open-source issues appeared to be fixed and that the absence of CVE assignments suggested an incomplete disclosure and remediation process. Critics warned that AI-driven bug discovery may outpace validation and patching capacity for maintainers and defenders.
Following the launch of Claude Code Security, cybersecurity stocks fell sharply, with several vendors dropping roughly 8% to 9% and JFrog falling nearly 25%. Commentators linked the market reaction to fears that AI-native code scanning could pressure traditional AppSec and software security business models.
As part of the Claude Code Security rollout, Anthropic said its team used Claude Opus 4.6 to identify more than 500 previously unknown high-severity vulnerabilities in production open-source codebases. The company said it was conducting triage and responsible disclosure with maintainers.
Anthropic announced Claude Code Security, a new Claude Code capability that scans codebases for vulnerabilities and suggests patches for human review. The feature was made available in a limited research preview for selected Enterprise and Team customers, with Anthropic saying it uses reasoning over code, data-flow analysis, and multi-stage verification to reduce false positives.
Anthropic launched Claude Sonnet 4.6 as its second major model release in under two weeks, adding stronger coding and computer-use capabilities plus new developer platform features such as adaptive and extended thinking modes and beta context compaction. The model became the default for Free and Pro users on claude.ai and Claude Cowork with unchanged pricing.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
10 references tracked. Mallory keeps watching after this page renders.
govinfosecurity.com
Open sourcecsoonline.com
Open sourcego.theregister.com
Open sourcebankinfosecurity.com
Open sourceresilientcyber.io
Open sourcecyberscoop.com
Open sourcesecurelybuilt.substack.com
Open sourcehelpnetsecurity.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.