GoPlus: Claude Chrome versions below 1.0.41 contain a high-risk vulnerability; immediate upgrade is recommended.

PA一线
PA一线

PANews reported on March 27th that, according to GoPlus monitoring, the Anthropic Claude Chrome extension contains a high-risk prompt injection vulnerability, affecting versions lower than 1.0.41. Attackers can hijack the Claude plugin through malicious web pages, using a subdomain trust whitelist to send malicious prompts to the extension and execute them automatically. This could allow attackers to read Google Drive documents, steal business tokens, export chat logs, and even impersonate users to perform sensitive operations without the user's knowledge. Users are advised to update the extension to version 1.0.41 or later and to be wary of unknown links.

Share to:

Author: PA一线

This content is for market information only and is not investment advice.

Follow PANews official accounts, navigate bull and bear markets together
Telegram Discussion Group
Telegram News Channel
@PANews
Recommended Reading
PA一线

PA一线

A user lost $85,000 in sNUSD due to signing a maliciously approved transaction.
PA一线

PA一线

A user had $1.76 million worth of USDC stolen after signing a malicious Permit transaction.
PA一线

PA一线

A user had $53,000 worth of PAXG stolen after signing a maliciously approved transaction.
PA一线

PA一线

Falcon Finance Announces Perryverse NFT Whitelist Results
PA一线

PA一线

GoPlus Launches 500 Million GPS Token Security Fund
PA一线

PA一线

GoPlus Alert: Bankroll old version contract was attacked, users need to revoke authorization

Popular Articles

Industry News
Market Trends
Curated Readings
Subscribe
PANews App
24/7 blockchain news tracking and in-depth analysis.
Download PANews App
App StoreGoogle Play
PANews APP
Backpack founder responds to controversy surrounding BP token FUD and airdrop: No cash-out through OTC channels.
PANews Newsflash