< ciso
brief />
Tag Banner

All news with #claude tag

111 articles

AI coding agents trigger endpoint behavioral detections

🛡️ Sophos analyzed a week of June 2026 telemetry and found AI coding agents like Claude Code, Cursor, and OpenAI Codex frequently trigger behavioral detection rules designed to catch human attackers. The agents perform actions—decrypting browser credentials, enumerating Windows Credential Manager, downloading files via LOLBins, and writing startup scripts—that look like malicious behavior to endpoint engines. While often benign developer automation, these behaviors overlap precisely with attacker techniques and can generate false positives. Sophos recommends scoping rules to agent parents, workspaces, and download reputations while keeping credential access tightly controlled.
read more →

Anthropic: Claude Fable 5 will return to subscriptions

📰 Anthropic says access to Claude Fable 5 is being moved off standard subscriptions after July 7 and shifted to usage-based billing due to unpredictable high demand. The model remains available globally via the Claude API and consumption-based Enterprise plans, while subscription access is being rolled out conservatively. Anthropic expects to restore Fable 5 to subscriptions once sufficient capacity is available, clarifying the change is not intended to be permanent.
read more →

Claude Fable relaunch disappoints users

🤖 Anthropic's Claude Fable has been restored for all users, including Max subscribers, but comes with strict usage caps and degraded behavior. Users report frequent fallbacks to Opus 4.8 and tighter guardrails that block or reduce performance on security‑adjacent and systems‑level prompts. The model will shift to a pay‑to‑play usage credits system after July 7, further limiting access.
read more →

Anthropic redeploys Mythos 5 and Fable 5 with safeguards

🛡️ Anthropic has redeployed Claude Mythos 5 and Claude Fable 5 globally after a brief suspension linked to US export controls, adding new security limitations. Fable 5 now includes an improved safety classifier that blocks reported jailbreaks in over 99% of cases, though it may increase false positives for benign coding tasks. The models will be available across major clouds and selected subscription tiers, and Anthropic is collaborating with government and industry partners on AI security testing and a HackerOne program.
read more →

Anthropic restores Claude Fable 5 after export pull

🔒 Anthropic has restored Claude Fable 5 globally after the U.S. Commerce Department lifted export controls on June 30 that had forced the company to suspend the model two and a half weeks earlier. The suspension followed a reported jailbreak discovered by Amazon researchers that bypassed Fable 5's safety rules and demonstrated potential exploit code. Anthropic trained a new classifier that blocks the reported technique in over 99% of attempts and routes blocked requests to the weaker Claude Opus 4.8, while Mythos 5 remains more tightly restricted for now.
read more →

Anthropic launches Sonnet 5, near Opus 4.8 performance

🧭 Anthropic has released Claude Sonnet 5, a more agentic Sonnet-class model designed to bring many of the planning and tool-usage capabilities previously reserved for Opus 4.8 to a lower-cost tier. The company says Sonnet 5 improves coding, research, automation, and multi-step task handling, and can check its own outputs more reliably. Introductory API pricing runs through August 31, 2026, with lower rates than Opus 4.8, and the model is available to Free, Pro, and Max subscribers.
read more →

Anthropic Claude Sonnet 5 available on AWS

🤖 AWS now offers Claude Sonnet 5, Anthropic’s latest Sonnet-generation model, delivering high capability at Sonnet pricing for coding, agents, and professional workflows. The model excels at navigating large codebases, performing multi-file changes, debugging, and refactoring with fewer corrections. For agentic use it maintains state, calls tools precisely, and recovers from errors to increase successful runs. Customers can access Sonnet 5 via Amazon Bedrock or the Claude Platform on AWS, with Bedrock providing AWS-managed features like guardrails and regional data residency.
read more →

Claude Opus 4.8 now in AWS GovCloud (US)

🚀 AWS GovCloud (US) now offers Anthropic's Claude Opus 4.8, the vendor's most capable generally available model to date. Claude Opus 4.8 improves agentic coding, long-running autonomous tasks, and professional knowledge work by maintaining extended context, planning before edits, and recovering from errors. Amazon Bedrock delivers access while keeping data in AWS infrastructure and adding AWS-managed features such as Guardrails and Knowledge Bases.
read more →

Agentic coding tools tricked into running shell

🔎 Researchers at Mozilla's 0DIN demonstrated that an AI coding agent like Claude Code can be manipulated into executing a remote payload by following innocuous setup instructions in a clean GitHub repo. The approach uses three benign-looking components—a standard repo, an initialization error prompting a recommended command, and a script that pulls a command from a DNS TXT record—to spawn an interactive shell with developer privileges. 0DIN warns this chain leaves no explicit malicious code in the repo and is difficult for scanners or human reviewers to detect.
read more →

Anthropic tests Claude Cowork mobile control features

🖥️ Anthropic appears to be testing mobile support for Claude Cowork, enabling users to start and monitor long-running Claude tasks from their phones. Cowork, a desktop-focused agentic mode that performs extended knowledge-work tasks, can access files, generate documents and continue working in the background. Screenshots shared on X indicate the mobile experience will act as a remote control while the heavy processing remains on the user’s PC. Anthropic has not officially announced full mobile rollout yet.
read more →

Security considerations for adopting Claude in SMBs

🔒 As SMBs adopt Claude, security leaders must quickly map which Claude products and plans are appropriate and control the blast radius. Understand plan differences—Team vs Enterprise—and apply an agile approval process for provisioning. Risk-rank features, phase enablement, and tightly manage API keys and access. Maintain data governance, monitor web search egress, and complement Anthropic controls with internal tooling and vendor collaboration.
read more →

Automating Disassembly with Local AI Agents

🛠️ This blog demonstrates using AI agents to automate a VB6 disassembler by exposing its parsed model through the Windows Running Object Table and providing an operator briefing plus auto-generated prototypes. The agent (Claude Code in the examples) binds to the COM object, runs scripts to extract P-code, reconstruct source, generate call graphs, and export function metadata to SQLite, all locally without uploading binaries. The approach decouples tool features from fixed menus, enables repeatable exhaustive analysis, and preserves sensitive data on the analyst's workstation.
read more →

AWS Security Agent adds Kiro and Claude Code support

🔒 AWS Security Agent (now part of AWS Continuum) adds support for Kiro and Claude Code, enabling developers to trigger security scans directly from their development environment. The agent now validates code scanner findings by simulating exploits in a sandbox to provide proof of exploit, reducing false positives and improving prioritization. Integrations include GitLab.com, GitLab Self Managed, GitHub Enterprise, Bitbucket, and Confluence, and features are available in all supported regions.
read more →

Experts Urge US to Reconsider Ban on Anthropic Models

🛡️ Over 50 cybersecurity professionals have urged the US government to lift its export-control directive that suspended access to Anthropic’s Mythos 5 and Fable 5 LLMs. The directive, issued on June 12, led Anthropic to suspend access to both models while it complies with the government order, which cited national security concerns tied to alleged guardrail bypass research. The signees argue the ban removes valuable defensive capabilities and call for a transparent, scientific AI risk-assessment process.
read more →

Check Point expands Claude compliance coverage

🔒 Check Point now integrates its Workforce AI governance with Claude’s Compliance API to close substantial visibility gaps in enterprise AI usage. The integration provides continuous, audit-grade records across web, desktop, and mobile surfaces, addressing a critical mobile blind spot that proxies, CASBs, and endpoint DLP cannot cover. It combines content-level exposure analysis, per-user adoption analytics, and unified policy enforcement to enable secure, frictionless AI adoption across the organization.
read more →

Agentjacking: AI coding agents tricked into execution

🛡️ Cybersecurity researchers at Tenet Security disclosed a new attack class called Agentjacking that tricks AI coding agents into executing arbitrary code. The exploit leverages Sentry's public DSN and its MCP interaction to inject crafted error events, which agents like Claude Code and Cursor interpret as trusted resolution steps. Successful exploitation can expose sensitive data and run code with developers' privileges.
read more →

Practical defenses for unauthorized workplace AI

🛡️ This article outlines how enterprises can detect and block unauthorized AI tools—ranging from public chatbots like ChatGPT and Claude to meeting recorders and local model runners. It recommends monitoring NGFW/web-filter logs, EDR/EPP and MDM tools, browser policies, DNS reroutes, and application allowlists. The guidance covers detection indicators (domains, executables, SNI, calendar invites) and concrete lockdown steps (category blocks, policy toggles, OAuth restrictions). Emphasis is placed on offering approved alternatives and using layered controls rather than outright bans.
read more →

Anthropic launches Mythos 5 and guarded Fable 5 AI

🤖 Anthropic has released two new models, Claude Mythos 5 and Claude Fable 5, with Mythos 5 earmarked as an upgraded frontier model for cybersecurity and initially deployed via Project Glasswing. Fable 5 uses the same core model but adds conservative guardrails, routing certain queries to Claude Opus 4.8. Both models are priced significantly lower than previous previews and Fable 5 is already available through Microsoft Foundry.
read more →

Anthropic’s Claude Fable 5 and Mythos 5 Launch

🛡️ Anthropic released Claude Fable 5 publicly on June 9, pairing it with a twin, Claude Mythos 5, that retains strong cybersecurity capabilities for vetted defenders. Fable 5 routes flagged cyber, bio, chemistry, and distillation requests to the weaker Opus 4.8 using safety classifiers, while Mythos 5 keeps those abilities available under trusted access. Both models are priced per input/output tokens and included on paid plans through June 22 before moving to usage credits.
read more →

Anthropic launches Fable 5 with limited-time access

🔒 Anthropic has released Fable 5, a safer variant of its powerful Mythos-class model, intended to reduce misuse by blocking sensitive cybersecurity, biology, and chemistry queries. The company will route restricted prompts to Opus 4.8, while the unrestricted Claude Mythos 5 remains limited to highly vetted partners. Fable 5 is free temporarily for Pro, Max, and Enterprise users until June 22 but consumes tokens much faster than other models.
read more →