GoPlus: Claude Chrome versions below 1.0.41 contain a high-risk vulnerability; immediate upgrade is recommended.

PA一线
PA一线

PANews reported on March 27th that, according to GoPlus monitoring, the Anthropic Claude Chrome extension contains a high-risk prompt injection vulnerability, affecting versions lower than 1.0.41. Attackers can hijack the Claude plugin through malicious web pages, using a subdomain trust whitelist to send malicious prompts to the extension and execute them automatically. This could allow attackers to read Google Drive documents, steal business tokens, export chat logs, and even impersonate users to perform sensitive operations without the user's knowledge. Users are advised to update the extension to version 1.0.41 or later and to be wary of unknown links.

Share to:

Author: PA一线

This content is for market information only and is not investment advice.

Follow PANews official accounts, navigate bull and bear markets together
Telegram Discussion Group
Telegram News Channel
@PANews
Recommended Reading
PA一线

PA一线

GoPlus: Adobe suspected of being attacked, 13 million user data leaked.
PA一线

PA一线

GoPlus: Infiniti Stealer steals Mac crypto assets via "ClickFix" attack.
PA一线

PA一线

A user lost $85,000 in sNUSD due to signing a maliciously approved transaction.
PA一线

PA一线

A user had $1.76 million worth of USDC stolen after signing a malicious Permit transaction.
PA一线

PA一线

A user had $53,000 worth of PAXG stolen after signing a maliciously approved transaction.
PA一线

PA一线

Falcon Finance Announces Perryverse NFT Whitelist Results

Popular Articles

Industry News
Market Trends
Curated Readings
Subscribe
PANews App
24/7 blockchain news tracking and in-depth analysis.
Download PANews App
App StoreGoogle Play
PANews APP
Reports indicate that one crew member of the US fighter jet shot down over Iran has been rescued.
PANews Newsflash