The Ministry of Industry and Information Technology has issued a risk warning regarding security backdoor vulnerabilities in the AI programming tool Claude Code. Developed by U.S. company Anthropic, Claude Code is capable of autonomously completing coding tasks. However, versions 2.1.91 to 2.1.196 have been found to contain a backdoor that can transmit sensitive user information, such as location and identity, to remote servers without consent.
The Ministry's Network Security Threat and Vulnerability Information Sharing Platform (NVDB) advises organizations and users to immediately investigate and address this issue. Affected versions should be uninstalled or upgraded to a secure version that eliminates the backdoor. Additionally, it is recommended to enhance monitoring of external connections and traffic within core business networks to prevent unauthorized data transfers.
Chinese Ministry Warns of Security Backdoor in AI Tool Claude Code
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.
