(github.com)

441 points longcat | 1 comments | 27 Aug 25 01:38 UTC | HN request time: 0.205s | source

https://semgrep.dev/blog/2025/security-alert-nx-compromised-...

Show context

divan ◴[27 Aug 25 12:48 UTC] No.45038932[source]▶

>>45034496 (OP) #

So any process on my computer could just start using Claude Code for their own purposes or what? o_O

replies(6): >>45038958 #>>45038967 #>>45039022 #>>45039024 #>>45039029 #>>45039116 #

echelon ◴[27 Aug 25 12:52 UTC] No.45038967[source]▶

>>45038932 #

Yes. It's a whole new attack vector.

This should be a SEV0 at Google and Anthropic and they need to be all-hands in monitoring this and communicating this to the public.

Their communications should be immediate and fully transparent.

replies(1): >>45039200 #

antiloper ◴[27 Aug 25 13:11 UTC] No.45039200[source]▶

>>45038967 #

It's not a SEV0 for LLM providers. If you already have code execution on some system, you've lost already, and whatever process the malware happens to start next is not at fault.

replies(1): >>45040259 #

1. echelon ◴[27 Aug 25 14:31 UTC] No.45040259[source]▶

>>45039200 #

It 100% is, and I posted my rationale here [1]. I would stake my reputation on this being the appropriate stance.

[1] https://news.ycombinator.com/item?id=45039442

↑

Malicious versions of Nx and some supporting plugins were published