A reported Claude Code incident shows how indirect prompt injection, routine error handling, and DNS TXT delivery can turn an AI assistant into a high-risk bridge between untrusted content and developer machines.
Cybercriminals are hiding malware inside DNS records and tricking victims into running it, bypassing classic security controls.