AI News HubLIVE
In-site rewrite2 min read

China warns of 'security backdoor' in Anthropic AI coding tool

China's National Vulnerability Database warned of a security backdoor in Anthropic's Claude Code AI coding tool, which could transmit sensitive information to Anthropic's servers without user consent. NVDB advises users to uninstall or upgrade to the latest secure version.

SourceHacker News AIAuthor: bookofjoe

Advertisement

East Asia

China warns of 'security backdoor' in Anthropic AI coding tool

The alleged backdoor could allow the software to "transmit sensitive information", including users' locations and identity-related identifiers, back to Anthropic's servers without users' consent.

Anthropic logo is seen in this illustration taken May 20, 2024. (Photo: REUTERS/Dado Ruvic)

Read a summary of this article on FAST.

Get bite-sized news via a new cards interface. Give it a try.

Click here to return to FAST Tap here to return to FAST

FAST

BEIJING: A Chinese industry regulator warned users on Wednesday (Jul 8) of a "security backdoor" embedded in versions of US artificial intelligence company Anthropic's coding tool, Claude Code.

The alleged backdoor could allow the software to "transmit sensitive information", including users' locations and identity-related identifiers, back to Anthropic's servers without users' consent, said China's National Vulnerability Database (NVDB), a cybersecurity platform.

Claude Code is an AI coding agent that can generate computer code, debug software and review code based on user prompts.

San Francisco startup Anthropic blocks users and companies in China and other nations it deems adversarial from accessing its products, but it is still possible to use them in the country through VPN or third-party proxy services.

Guess Word

Crack the word, one row at a time

Buzzword

Create words using the given letters

Mini Sudoku

Tiny puzzle, mighty brain teaser

Mini Crossword

Small grid, big challenge

Word Search

Spot as many words as you can

Show More

Show Less

The NVDB, which is affiliated with China's Ministry of Industry and Information Technology, said on its website it had recently "detected that the AI coding tool Claude Code contains security backdoor risks, posing a severe threat".

Anthropic has not responded to AFP requests for comment on the allegations, which first emerged in specialist tech media last week.

The NVDB advised relevant institutions and users "to conduct a comprehensive check immediately" and "promptly uninstall or upgrade to the latest secure version from which the relevant backdoor code has been removed".

It also urged organisations to strengthen network traffic monitoring to prevent the unauthorised leakage of sensitive data.

Chinese tech giant Alibaba told employees last week that the use of Claude Code would be banned from Jul 10 due to security concerns, people familiar with the matter said.

Anthropic has previously accused Alibaba of reverse-engineering its AI models to mimic their abilities in a process known as "distillation".

Claude Code engineer Thariq Shihipar responded in an X post last week to reports alleging that the tool was tracking certain data from Chinese users.

"This is an experiment we launched in March that was meant to prevent account abuse from unauthorised resellers and protect against distillation," Shihipar wrote.

"The team has landed stronger mitigations since then and we've actually been meaning to take this down for a while... this should be fully rolled back in tomorrow's release."

Related:

US lifts export controls on Anthropic's Fable, Mythos AI models

China's DeepSeek developing its own AI chip, sources say

Source: AFP/ec

Get the CNA app

Stay updated with notifications for breaking news and our best stories

Download here

Get WhatsApp alerts

Join our channel for the top reads for the day on your preferred chat app

Join here

Advertisement

Advertisement

Expand to read the full story

Get bite-sized news via a new cards interface. Give it a try.

Click here to return to FAST Tap here to return to FAST

FAST