[Claude Code High-Risk Vulnerability Exploited by Hackers to Attack Crypto Users] On January 8, SlowMist team security researcher 23pds shared researcher Adam Chester's report, revealing a privilege escalation and command execution vulnerability identified as CVE-2025-64755 in Anthropic's Claude Code. Attackers can execute commands without user authorization, and the related PoC has been made public. 23pds stated that phishing hackers have already exploited this vulnerability to attack crypto users.