Thursday, July 9, 2026
NewsezeNews with Rewards · Earn while you read
+5 credits / query
cyber

GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents

Newseze Wire·Thu, Jul 9, 4:27 AMWire: The Hacker News
Open original source Read full story (in-site)
GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents

Researchers at Wiz found that a flaw in six popular AI coding assistants lets a booby-trapped code project quietly take control of a developer's computer. The assistant asks permission to edit one harmless-looking file, but the…

Sourcing & attribution. Newseze provides AI-curated summaries, narrative framing, and editorial analysis. The underlying reporting was contributed by The Hacker News; tap “Open original source” above to read their full reporting and support the contributing newsroom directly.

Newseze Analysis98 words · original commentary · full read loading…
Researchers at Wiz found that a flaw in six popular AI coding assistants lets a booby-trapped code project quietly take control of a developer's computer. The assistant asks permission to edit one harmless-looking file, but the… The story falls into Newseze's cyber desk and is being actively tracked by our editorial team. Calm framing, primary-source references, and respectful tone — every Newseze story is scored for drama and conspiracy before it reaches you. Worth knowing: Newseze refreshes its newsroom every hour and flags fast-moving local and breaking news as it develops. Watch this page for updates. Reporting: The Hacker News.
Ask Us · Any Story, Any AnswerBe the first to ask

Newseze's algorithm reads the story and answers your question — calmly, factually, with source attribution. No comments, no flame wars — just answers.

No questions yet. Be the first.

Answers reflect Newseze's editorial framework applied under fair use (17 U.S.C. § 107). Not financial, legal, medical, or tax advice. Hate speech and racial slurs are blocked.

Related stories

Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It
CYBERtrust 75
Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It

Why it mattersAsk an AI coding agent to scan open-source code for security holes, and it might run the attacker's code on your own machine instead. That is the finding in a proof-of-concept published Wednesday by the AI Now …

Ask an AI coding agent to scan open-source code for security holes, and it might run the attacker's code on your own machine instead. That is the finding in a&n…

ChellaBy Chella·1h ago
WireThe Hacker News
Full Analysis Comment PostRead →
Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider Hacker
CYBERTrending Righttrust 80
Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider Hacker

Why it mattersU.S. prosecutors linked an alleged Scattered Spider hacker to a break-in at a luxury jewelry retailer using a persistent Windows device ID, according to a newly unsealed federal complaint.

U.S. prosecutors linked an alleged Scattered Spider hacker to a break-in at a luxury jewelry retailer using a persistent Windows device ID, according to a newly…

ChellaBy Chella·1d ago
WireThe Hacker News
Full Analysis Comment PostRead →
China-Linked UAT-7810 Expands ORB Network With New LONGLEASH Malware
CYBERTrending Righttrust 75
China-Linked UAT-7810 Expands ORB Network With New LONGLEASH Malware

Why it mattersA Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware to expand its Operational Relay Box (ORB) network by breaking into internet-facing networking devices. According to findings from Cisco …

A Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware to expand its Operational Relay Box (ORB) network by breaking into internet-…

ChellaBy Chella·21h ago
WireThe Hacker News
Full Analysis Comment PostRead →