A clean GitHub repo with zero malicious code just proved Claude Code can be tricked into opening a hidden reverse shell



  • Claude Code ran the dangerous command while treating it as routine recovery
  • A single fake error message triggered the entire hidden attack chain
  • Static scanners and firewalls saw nothing more than normal DNS resolution

Researchers at Mozilla’s 0din team have shown how Claude Code can be manipulated into opening a hidden reverse shell on a developer’s device.

The exploit required no malicious code inside the cloned project, since every visible file passed ordinary review without raising suspicion.

https://cdn.mos.cms.futurecdn.net/eZs7VDaqqgXt5TBmcicAmS-1920-80.jpg



Source link

Latest articles

spot_imgspot_img

Related articles

Leave a reply

Please enter your comment!
Please enter your name here

spot_imgspot_img