Infosecurity Magazine

New Zero-Click Flaw in Claude Desktop Extensions, Anthropic Declines Fix

Security researchers from LayerX identified a new flaw in 50 Claude Desktop Extensions that could lead to unauthorized remote code execution ...
WinBuzzer

10,000+ Claude Desktop Users Exposed by Zero-Click Flaw

A zero-click vulnerability in Claude Desktop Extensions has exposed over 10,000 users to remote code execution through ...
Computing

Claude extensions open a security hole in endpoints

Claude Desktop is a local endpoint-based version of Anthropic’s Claude AI assistant, and Desktop Extensions is a marketplace for add-ons to extend its functionality, similar to browser add-ons.
Tech Times

Hidden Claude Desktop Extension Flaw Could Let Hackers Seize Your PC

Security researchers warn that Claude Desktop Extensions may allow zero-click prompt injection attacks, potentially leading to remote code execution and full system compromise.
Android

Anthropic’s Claude Sonnet 4.5 Can Code for Up To 30 Hours Straight

Anthropic launched Claude Sonnet 4.5, claiming the title of the world’s best coding model. The key breakthrough is its ability to code autonomously for up to 30 hours, a massive increase in endurance.
Technobezz on MSN

A zero-click flaw in Claude Desktop Extensions exposes over 10,000 users to remote code execution

A critical zero-click flaw in Claude Desktop Extensions allows remote code execution via calendar invites, risking over 10,000 users' systems..

AI connector for Google Calendar makes convenient malware launchpad, researchers show

'Claude DXT's container falls noticeably short of what is expected from a sandbox' LayerX, a security company based in Tel Aviv, says it has identified a zero-click remote code execution vulnerability ...