CP
cyberpings

Claude Desktop - Researcher Alleges Spyware Installation on macOS

A researcher claims that Claude Desktop installs spyware on macOS by creating a Native Messaging host. This raises significant privacy concerns for users. Discussions are ongoing about the implications of these findings.

PrivacyHIGHUpdated: Published:
Featured image for Claude Desktop - Researcher Alleges Spyware Installation on macOS

Original Reporting

MWMalwarebytes Labs

AI Summary

CyberPings AI·Reviewed by Rohit Rana

🎯Basically, a researcher says Claude Desktop secretly installs software that could spy on users' web activities.

What Happened

A security researcher, Alexander Hanff, has raised serious concerns about Claude Desktop, an application developed by Anthropic. In his article, he claims that installing Claude Desktop on macOS results in the installation of what he describes as spyware. This claim has sparked discussions among users on platforms like Mastodon and Reddit, with many supporting his findings.

The Findings

During his investigation, Hanff discovered a Native Messaging host manifest on his Mac that he did not knowingly install. This manifest allows Chromium-based browsers (like Chrome, Edge, and Brave) to communicate with native applications outside the browser's sandbox. Hanff's tests revealed that installing Claude Desktop automatically drops this manifest into multiple browser profiles, even those not yet installed on the system.

The manifest pre-authorizes three Chrome extension IDs, allowing any extension with those IDs to access the native host. This access could enable browser automation features, raising significant privacy concerns. Hanff argues that this behavior effectively acts as a backdoor, expanding the attack surface of any machine where the manifest is installed.

Implications for Users

While Native Messaging is a standard mechanism in Chromium, the way Claude Desktop utilizes it raises ethical questions. Users may not be aware that the application is modifying their browser configurations without consent. Hanff emphasizes that while the bridge created by the manifest does not perform any malicious actions on its own, it has the potential to be exploited.

What’s Next?

Currently, there is no official response from Anthropic regarding these claims. The lack of a detailed technical privacy specification for the Claude Desktop-browser integration leaves many questions unanswered. Users are left in the dark about what data might flow when using this integration.

Conclusion

The situation highlights a growing concern about user privacy in software applications. While Claude Desktop may aim to enhance functionality across browsers, the method of silently installing a manifest raises ethical issues. Users deserve transparency regarding how applications interact with their systems, allowing them to make informed decisions about the risks involved.

🔒 Pro Insight

🔒 Pro insight: The silent installation of Native Messaging manifests could set a concerning precedent for user privacy and consent in software applications.

MWMalwarebytes Labs
Read Original

Share

Related Pings

Preview image for House Republicans Introduce National Privacy Bill for Consumers
Privacy
MEDIUM

House Republicans Introduce National Privacy Bill for Consumers

House Republicans have introduced the Secure Data Act to enhance digital privacy rights. This new legislation aims to give consumers more control over their data, but bipartisan support is uncertain. Critics worry it may weaken existing protections. Stay informed about your privacy rights as this bill progresses.

CSCyberScoop
Read PingRead Source
Preview image for Government Security Risks - BlackBerry Survey Reveals Issues
Privacy
HIGH

Government Security Risks - BlackBerry Survey Reveals Issues

A BlackBerry survey reveals that government leaders are jeopardizing security by using consumer messaging apps like WhatsApp for sensitive discussions. This reliance on insecure platforms raises significant risks for data privacy and security. Education on encryption is urgently needed to close the gaps in understanding.

SCSC Media
Read PingRead Source
Preview image for EFF Sues DHS and ICE Over Subpoenas Targeting Critics
Privacy
HIGH

EFF Sues DHS and ICE Over Subpoenas Targeting Critics

The EFF has filed a lawsuit against DHS and ICE for records on subpoenas used to identify online critics. This raises serious privacy concerns over government surveillance, impacting free speech rights.

EFEFF Deeplinks
Read PingRead Source
Preview image for UK Government Warns of Spyware Threats from 100 Countries
Privacy
HIGH

UK Government Warns of Spyware Threats from 100 Countries

The UK government warns that over 100 countries now possess spyware capable of hacking phones. This growing threat endangers citizens and businesses alike. Enhanced cybersecurity measures are urgently needed to combat these risks.

TCTechCrunch Security
Read PingRead Source
Preview image for Scotland Yard - Judges Allow Live Facial Recognition Use
Privacy
HIGH

Scotland Yard - Judges Allow Live Facial Recognition Use

Judges ruled that Scotland Yard can keep using live facial recognition in London, despite concerns about privacy violations. This decision raises important questions about surveillance and civil rights. Critics argue that it could lead to mass surveillance and wrongful identifications.

REThe Register Security
Read PingRead Source
Preview image for Reddit Empowers Community Moderation - Understanding Section 230
Privacy
MEDIUM

Reddit Empowers Community Moderation - Understanding Section 230

Reddit's community moderation relies heavily on Section 230, which protects user speech. Without it, moderation could face legal risks, impacting how communities function. Supporting this law is vital for maintaining free expression online.

EFEFF Deeplinks
Read PingRead Source