The Register
A researcher has found a way to trick Claude into uploading private data to an attacker's account using indirect prompt injection. Anthropic says it has already documented the risk, and its foolproof solution is: keep an eye on your screen.
Security researcher Johann Rehberger (wunderwuzzi), who has identified dozens of AI-oriented vulnerabilities, has published a summary of a proof-of-concept attack he developed for stealing private data via Claude.
When asked about the exploit, Anthropic posited that its existing documentation adequately warns users about the possibility of data exfiltration when they enable network connectivity. The company's recommended mitigation for network access risks is to "monitor Claude while using the feature and stop it if you see it using or accessing data
The Daily Beast
Tribune Chronicle