GovInfoSecurity

Claudy Day Forecast: Chat Data Theft

Oasis Security researchers found three bugs in Claude that attackers can chain to steal user chat data without malware or ...
Hosted on MSN

Claude Code's prying AIs read off-limits secret files

Don't you hate it when machines can't follow simple instructions? Anthropic's Claude Code can't take "ignore" for an answer and continues to read passwords and API keys, even when your secrets file is ...
CSOonline

Claude AI vulnerability exposes enterprise data through code interpreter exploit

Security researcher demonstrates how attackers can hijack Anthropic’s file upload API to exfiltrate sensitive information, even with network restrictions enabled. A newly disclosed vulnerability in ...
Hosted on MSN

Claude can now create Excel files and PowerPoints for you — here's how to use this new feature

Instead of just providing advice or generating text responses, Claude can now create actual Excel spreadsheets, Word documents, PowerPoint presentations, and PDFs that you can download and use ...
HHS

Malicious Repo Files Could Hijack Claude Code Sessions

Multiple vulnerabilities in Anthropic's Claude Code could enable attackers to run harmful commands and steal API keys by hiding malicious files in a code repository, Check Point researchers found.
TechRadar

Claude can be tricked into sending your private company data to hackers - all it takes is some kind words

Claude’s Code Interpreter can be exploited to exfiltrate private user data via prompt injection Researcher tricked Claude into uploading sandboxed data to his Anthropic account using API access ...