{"data":{"id":"aa7aa69c-15ce-4b5e-a6c8-f8e3d435a917","title":"Meet Hades: The malware that lies to AI security agents","summary":"The Hades Campaign is a sophisticated malware attack targeting Python developer environments that uses multiple advanced techniques: it harvests credentials, replicates itself across systems, extracts sensitive data from computer memory, and uses adversarial prompt injection (tricking AI security scanners by hiding malicious instructions in plain text) to evade detection by AI-powered security tools. The malware enters through compromised Python packages and uses the Bun toolkit (a JavaScript runtime) to execute payloads while bypassing traditional security controls.","solution":"N/A -- no mitigation discussed in source.","labels":["security"],"sourceUrl":"https://www.csoonline.com/article/4182707/meet-hades-the-malware-that-lies-to-ai-security-agents-2.html","publishedAt":"2026-06-09T05:10:14.000Z","cveId":null,"cweIds":null,"cvssScore":null,"cvssSeverity":null,"severity":"high","attackType":["prompt_injection","supply_chain"],"issueType":"news","affectedPackages":null,"affectedVendors":[],"affectedVendorsRaw":[],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":null,"epssScore":null,"patchAvailable":null,"disclosureDate":"2026-06-09T05:10:14.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"advanced","impactType":["confidentiality","integrity","availability"],"aiComponentTargeted":"api","llmSpecific":true,"classifierConfidence":0.92,"researchCategory":null,"atlasIds":null}}