Hackers Are Posting the Claude Code Leak With Bonus Malware
Hackers are embedding malware in leaked Claude Code repos, turning a source code exposure into a security threat.
A significant security incident has unfolded around Anthropic's Claude Code, a popular AI-powered coding assistant. The company accidentally made the tool's source code public this week, leading to immediate reposting across GitHub. However, security researchers at BleepingComputer discovered that hackers have embedded infostealer malware within many of these leaked repositories, turning a simple code exposure into an active cybersecurity threat. Anthropic has responded aggressively with copyright takedown notices, initially targeting over 8,000 repositories before narrowing their focus to 96 specific copies and adaptations.
This isn't the first time Claude Code has been used as malware bait. In March, 404 Media reported that sponsored Google ads led to fake installation guides that directed users to run commands that actually downloaded malware. The pattern suggests hackers are consistently exploiting interest in Anthropic's tools, particularly targeting users who might copy and paste installation commands without proper verification. The incident highlights the growing security challenges facing AI companies as their tools gain popularity.
- Anthropic accidentally leaked Claude Code source code, which hackers are reposting with embedded infostealer malware
- The company issued takedown notices for thousands of GitHub repos, later focusing on 96 specific copies
- This follows a March incident where fake Claude Code installation guides via Google ads also distributed malware
Why It Matters
Developers seeking leaked AI tools risk infecting their systems, highlighting new security vectors in the AI ecosystem.