The malware is not delivering any exploits or otherwise malicious-looking code, so endpoint security is unlikely to flag it as malicious.

That’s because it’s new. Perhaps feeding prompts into Claude Code and similar tools will be considered suspicious from now on?