Security Privacy And RiskRisk

Claude Cowork file exfiltration vulnerability

April 7, 2026Garry Tan

Garry Tan warns attackers can exfiltrate user files from Cowork via an unremediated vulnerability in Claude's coding environment, noting it predates Cowork and was disclosed by Johann Rehberger.

Open in PulseSee the full authority discussion →

QUOTES

Attackers can exfiltrate user files from Cowork by exploiting an unremediated vulnerability in Claude’s coding environment, which now extends to Cowork.

The vulnerability was first identified in

before Cowork existed by Johann Rehberger, who disclosed

VOICES

Garry Tan

RELATED TERMS

vulnerabilitydata exfiltrationclaudeanthropicclaude cowork

OTHER FINDINGS IN SECURITY PRIVACY AND RISK

LiteLLM PyPI supply chain attack exfiltrating keys and credentials Claude Code TypeScript source leak via npm sourcemaps and Cloudflare bucket Claude Code source code leak and mass DMCA takedowns including open source forks

AMYGDALA PULSE

See what authorities are saying right now

This finding is one of many signals tracked across Indiehacking. The live feed updates every few hours with new authority voices, debates, and emerging ideas.

Open Indiehacking Pulse Browse all topics

← Back to Indiehacking