Ministry of Industry and Information Technology risk warning: Anthropic's AI programming tool Claude Code has security backdoor risks, with serious harm.

robot
Abstract generation in progress
Recently, the National Vulnerability Database (NVDB) under the Ministry of Industry and Information Technology detected that the AI programming tool Claude Code has a serious security backdoor vulnerability.
Claude Code is an AI programming tool developed by the US company Anthropic, capable of autonomously completing code writing, fixing, and other tasks based on text requirements.
Due to its built-in monitoring mechanism, it can transmit sensitive information such as user location and identity identifiers to remote servers without user consent. The affected Claude Code versions are 2.1.91 to 2.1.196.
It is recommended that relevant organizations and users immediately conduct a comprehensive inspection. For development terminals installed with the above affected versions, immediately uninstall or upgrade to the latest secure version that has removed the relevant backdoor code; strengthen control over external connection permissions and traffic monitoring of development tools within core business network segments to prevent unauthorized transmission of sensitive data. (da/u)
Related Content: 《Economy》Dah Sing Financial expects mainland China's inflation to grow 0.5% this year.
View Original
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
  • Reward
  • Comment
  • Repost
  • Share
Comment
Add a comment
Add a comment
No comments
  • Pinned