Claude flaws could have exposed chat data and redirected users to malicious links

Three linked flaws in Claude.ai could have let attackers steal sensitive chat data and send users to malicious websites through what looked like trusted Claude links, according to new research from Oasis Security. The attack chain, called “Claudy Day,” combined an invisible prompt injection issue, data exfiltration through Anthropic’s Files API path, and an open […] The post Claude flaws could have exposed chat data and redirected users to malicious links appeared first on VPN Central.