Friday , July 3 2026
Alibaba

Alibaba Reportedly Bans Claude Code for Suspected AI Tool Backdoor

Alibaba is said to be getting ready to ban the use of Anthropic’s Claude Code in its own systems starting July 10. This choice follows claims that the AI coding helper has a hidden detection method that acts like a backdoor.

The news, first reported by the Chinese financial outlet Yicai and later confirmed by Reuters, has not been officially acknowledged by Alibaba. It shows the rising tensions between big AI companies due to worries about model safety, data theft, and gathering information about rivals.

IBM-managed instance breach exposes personal data of 70,000 in Singapore

The Singapore Land Authority (SLA) has announced that the personal details of around 70,000 people were leaked after someone accessed...
Read More
IBM-managed instance breach exposes personal data of 70,000 in Singapore

Alibaba Reportedly Bans Claude Code for Suspected AI Tool Backdoor

Alibaba is said to be getting ready to ban the use of Anthropic’s Claude Code in its own systems starting...
Read More
Alibaba Reportedly Bans Claude Code for Suspected AI Tool Backdoor

CISA KEV Adds SharePoint RCE CVE-2026-45659 After Active Exploits

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a serious problem affecting Microsoft SharePoint Server to its list of...
Read More
CISA KEV Adds SharePoint RCE CVE-2026-45659 After Active Exploits

Nepal Unveils First “Hall of Fame” for Ethical Hackers

Nepal has started a 'Hall of Fame' program to honor cybersecurity researchers who safely report security flaws in government digital...
Read More
Nepal Unveils First “Hall of Fame” for Ethical Hackers

900+ Oracle E-Business instances Exposed Online

The Shadowserver Foundation found about 950 Oracle E-Business Suite (EBS) systems on the internet around the world. This discovery came...
Read More
900+ Oracle E-Business instances Exposed Online

India asks WhatsApp not to roll out ‘username’ feature over fraud concerns

The Indian government issued a notice WhatsApp planned to roll out its new 'username' feature. They are worried about fake...
Read More
India asks WhatsApp not to roll out ‘username’ feature over fraud concerns

Azure CLI Password Spray Impacts 78 Microsoft Accounts in 81M+ Attempts

Cybersecurity researchers have warned of a "massive, ongoing, automated password spray attack" aimed at Microsoft's Azure command-line interface (CLI), compromising...
Read More
Azure CLI Password Spray Impacts 78 Microsoft Accounts in 81M+ Attempts

Chrome Update Patches 382 Vulnerabilities, Including 15 Critical

Chrome 151 has a new update that fixes 382 security problems. This includes 15 critical issues that could allow attackers...
Read More
Chrome Update Patches 382 Vulnerabilities, Including 15 Critical

Apple fixes more than 30 iOS, macOS, and Safari flaws

Apple released security updates on Monday for iOS, macOS, and Safari. These updates fix more than thirty issues, including four...
Read More
Apple fixes more than 30 iOS, macOS, and Safari flaws

Attackers exploit critical flaw in Oracle E-Business

Attackers are now using a flaw (called CVE-2026-46817) in the Oracle E-Business Suite (EBS) financial app, according to the security...
Read More
Attackers exploit critical flaw in Oracle E-Business

Claude Code, Anthropic’s tool for coding, has quickly become popular with business developers. It helps create, fix, and improve code right in terminal settings.

Its increasing presence in businesses makes the supposed security worries very important, especially for big companies like Alibaba that handle large cloud and AI systems.

This ban comes at a time when Anthropic and Alibaba have both made claims against each other about model distillation and taking data without permission.

The controversy began with a June 30 Reddit post by a user named “LegitMichel777,” who claimed to have reverse-engineered Claude Code while trying to restore a disabled remote control feature.

Versions of Claude Code since 2.1.91 (released on April 2) are said to have hidden rules that check system settings, based on technical analysis shared by the user and summarized by many security news sources.

The tool checks if a user’s proxy settings or system timezone match items in two hidden lists linked to Chinese companies and AI research groups, like Alibaba, Baidu, ByteDance, and Moonshot AI.

The system does not send telemetry directly. Instead, it changes detection results by slightly adjusting internal prompts, changing date styles, and swapping punctuation marks.

If validated, this could represent a new form of covert environmental fingerprinting designed to evade traditional detection methods while enabling behavioral tracking or policy enforcement.

Anthropic has not made a public statement about these claims. But, a member of the Claude Code development team said on social media that the feature is meant to stop abuse by finding account reselling and big attempts to copy the model.

The developer indicated that this functionality would be removed in an upcoming release, with reports suggesting remediation efforts were already underway as of July 1. Based on this timeline, the feature may have been active for approximately three months.

In a letter on June 10 to U.S. lawmakers, Anthropic said that groups tied to Alibaba’s Qwen AI created a big scheme with about 25,000 fake accounts, leading to over 28 million interactions with Claude models in six weeks. Alibaba has not said anything publicly about these claims.

Despite many talks, no outside security check has confirmed the claimed backdoor’s presence or purpose. The lack of official comments from both companies leaves big questions unanswered about whether the tool is a security risk, a defensive measure against fraud, or just a misunderstood feature.

If it happens, Alibaba’s ban would be one of the first major rules against suspected hidden features in an AI coding tool. This could change how companies trust AI development tools.

Check Also

Mythos

Anthropic’s Mythos reportedly broke NSA classified systems in hours

The recent finding shows how powerful Mythos is: the AI can access the US government’s …