|
 Apple says it has no record of a successful spyware attack against any device running Lockdown Mode, the opt-in security feature it introduced in 2022.
|
|
A hacking group called Handala has gained access to FBI Director Kash Patel's email account, Reuters reports. The group published content from Patel's email on their website as proof, including photos of Patel "sniffing and smoking cigars" and "making a face while taking a picture of himself in the mirror with a ?large bottle of rum."
TechCrunch was able to independently confirm that at least some of the emails Handala stole were from Patel's account by checking information used by mail delivery systems that's stored in an email's header. Several stolen emails included a cryptographic signature that linked them to Patel's account. The FBI has also separately confirmed that the Director's account was hacked. "The FBI is aware of malicious actors targeting Director Patel's personal email information, and we have taken all necessary steps to mitigate potential risks associated with this activity," the Bureau told TechCrunch. "The information in question is historical in nature and involves no government information."
The FBI is offering up to $10 million in rewards for more information about the hackers who targeted Patel's account. Handala presents as a pro-Palestinian hacking group online, but is believed to be one of several aliases used by cyberintelligence units working for the Iranian government, Reuters writes. Groups affiliated with Iran have targeted officials in the US before. In August 2024, the FBI shared that a separate group, APT42, was
|
|
Anthropic has begun previewing "auto mode" inside of Claude Code. The company describes the new feature as a middle path between the app's default behavior, which sees Claude request approval for every file write and bash command, and the "dangerously-skip-premissions" command some coders use to make the chatbot function more autonomously.
With auto mode enabled, a classifier system guides Claude, giving it permission to carry out actions it deems safe, while redirecting the chatbot to take a different approach when it determines Claude might do something risky. In designing the system, Anthropic's goal was to reduce the likelihood of Claude carrying out mass file deletions, extracting sensitive data or executing malicious code.
Of course, no system is perfect, and Anthropic warns as such. "The classifier may still allow some risky actions: for example, if user intent is ambiguous, or if Claude doesn't have enough context about your environment to know an action might create additional risk," the company writes.
Anthropic doesn't mention a specific incident as inspiration for auto mode, but the recent 13-hour AWS outage Amazon suffered after one of the company's AI tools reportedly deleted a hosting environment, was probably front of mind for the company. Amazon blamed that specific incident on human error, saying the staffer involved in the incident had "broader permissions than expected."
Team plan users can preview auto mode starting today, with the feature set to roll out to Enterprise and API users in the coming days.
This article originally appeared on Engadget at https://www.engadget.com/ai/anthropic-releases-safer-claude-code-auto-mode-to-avoid-mass
|
|
