AI Agents Designed for Malicious Code Detection Vulnerable to 'Friendly Fire' Attacks
AI agents designed for malicious code detection, such as Anthropic's Claude Code and OpenAI's Codex, can be exploited through 'Friendly Fire' attacks that trick them into executing hidden malicious payloads embedded in README files. The vulnerability stems from their autonomous operation mode, which lacks sufficient safeguards against deceptive code injection, necessitating workflow changes rather than software patches.
Ask an AI coding agent to scan open-source code for security holes, and it might run the attacker's code on your own machine instead.
That is the finding in a proof-of-concept published Wednesday by the AI Now Institute, an attack it calls "Friendly Fire." It works against Anthropic's Claude Code and OpenAI's Codex when either is running in an autonomous mode that approves its own
*** END OF TRANSMISSION ***