--

[Cosine: Claude Code Faces Potential Poisoning Attack Risks] SlowMist founder Cosine pointed out that Claude Code has potential poisoning attack risks. Attackers may achieve silent code execution through malicious project configuration files, stealing API keys, cloud credentials, or controlling local devices. Researchers discovered during testing on Mac systems that Claude Code executing specific commands could trigger the local calculator to launch. After a successful attack, attackers may steal API keys for AI services like Claude and OpenAI, obtain cloud service credentials for AWS, Alibaba Cloud, Tencent Cloud, tamper with code repositories to implant backdoors, or use local devices to attack enterprise internal networks.

Loading...