CoWorker Inc. (Headquarters: Shinjuku, Tokyo; CEO: Kazuki Yamazato), a developer of AI security solutions, is offering its security scanner 'CoWorker AIDR (AI Detection and Response)' for free to companies starting in March 2026. This tool is designed to detect and defend against supply chain attacks when using the AI coding agent 'Claude Code' during its initial rollout phase.
The tool monitors all tool calls made by the AI in real-time, including fetching external libraries, browsing web pages, and generating or editing code. It automatically detects and blocks the ingestion of contaminated packages, malicious code injection, and access to phishing sites.
Key Highlights
・Addressing new cyber attack risks emerging with the widespread adoption of AI coding agents.
・Real-time defense against code tampering, data leakage, and phishing redirection by monitoring Claude Code behavior.
・Free distribution of 'CoWorker AIDR' to enterprises, aiming to raise the security standards of AI development environments.
Background of the Free Release
AI coding agents as a new attack vector: Real-time security monitoring is essential.
AI coding agents significantly boost developer productivity by autonomously fetching external libraries, referencing web pages, and generating or editing code. However, this autonomy hides supply chain risks such as the ingestion of contaminated packages, injection of malicious code, and redirection to fraudulent URLs.
On March 24, 2026, a supply chain attack occurred where the GitHub account of a main committer for the popular Python package 'litellm' was compromised by the cybercrime group 'TeamPCP,' resulting in malware being embedded in the package. This attack caused malicious code to execute automatically every time the Python interpreter started, leading to the theft of API keys, SSH keys, .env files, and credentials from local machines. Furthermore, our analysis revealed that the malware included a backdoor function to download and execute arbitrary binaries from a C2 (Command and Control) server, along with a kill switch, and utilized sophisticated tactics such as flooding GitHub issues with spam to obstruct reporting.
Our company detected this incident early in our internal environment and prevented data leakage through rapid incident response. Based on this experience, we recognized that real-time security monitoring is essential for the use of AI coding agents, leading to the free release of CoWorker AIDR.
FACT BOX
- Source: PR Times
- Category: News