// Alert

Claude threat report

// ClaudeMEDIUM

Mozilla 0DIN researchers disclosed a proof-of-concept attack against Claude Code that exploits automated error recovery to achieve remote code execution. The attack chains three benign-looking components—a GitHub repository, a Python package requiring initialization, and an attacker-controlled DNS TXT record—to trick Claude Code into executing a reverse shell. No malicious code appears in the repository; the payload is fetched only at DNS resolution time, allowing it to evade static scanners and safety checks. No active exploitation has been reported; the attack requires a developer to clone an attacker-controlled repository.

// Get alerts for Claude