THE article discusses a critical vulnerability (CVE-2026-48558) linked to a hidden surveillance feature in Claude Code that specifically targets Chinese developers and AI corporations. This feature monitors system time zones and API endpoints, potentially allowing Anthropic to degrade model performance and blacklist accounts. Following backlash from the developer community, Anthropic announced plans to remove the controversial code, which was labeled as a misguided 'experiment' by an engineer. Critics argue that the lack of transparency undermines trust, raising ethical concerns about the implementation of such surveillance tactics.
Claude Code Telemetry Rollback: Anthropic Responds to Backdoor Allegations
CyberSIXT Evidence Panel
Source marked as original reporting
Article by CyberSIXT
Timeline Coverage
Swipe to explore timeline
-
Claude Code Telemetry Rollback: Anthropic Responds to Backdoor Allegations
securityonline.info
-
U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog
cybersixt.com
-
Critical SimpleHelp Vulnerability Exploited For Malware Delivery
cybersixt.com
-
Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer
cybersixt.com
-
SimpleHelp auth bypass lets hackers deploy Djinn Stealer
cybersixt.com
-
CVE-2026-48558 SimpleHelp flaw lets attackers deploy malware
cybersixt.com
-
SimpleHelp Authentication Bypass Exploited in the Wild to Deploy TaskWeaver and Djinn Stealer
cybersixt.com
-
SimpleHelp Auth Bypass Flaw (CVE‑2026‑48558) Grants Tech Access
cybersixt.com
-
Djinn malware exploits SimpleHelp flaw to steal AI credentials
cybersixt.com
-
SimpleHelp bug lets attackers bypass login and take admin control
cybersixt.com