Anthropic Removes Hidden Tracking System from Claude Code After Discovery and Chinese Security Warning

3 hour ago 3 sources neutral

Key takeaways:

  • Anthropic's espionage-like tracking underscores centralization risks, potentially boosting decentralized AI tokens like TAO.
  • China’s NVDB warning signals growing tech decoupling, favoring censorship-resistant AI tokens like TAO.
  • Investors may rotate toward privacy-preserving AI solutions as security controversies erode trust in centralized APIs.

Anthropic has removed a hidden tracking system from its AI coding assistant, Claude Code, following a security researcher’s discovery that the tool embedded undisclosed markers to identify certain users. The situation escalated when China’s National Vulnerability Database (NVDB) formally warned developers to uninstall or upgrade affected versions, labeling the mechanism a backdoor.

The tracking feature, introduced in March, used Unicode signals and encoded domain lists inside Claude Code’s system prompts to flag users believed to be bypassing restrictions or attempting to extract model capabilities. Developer “Thereallo” revealed in June that the markers could catch API resellers, unauthorized gateways, and potential distillation attack pipelines by checking custom base URLs and hostnames containing references to Chinese AI labs like DeepSeek or Zhipu.

Anthropic engineer Thariq Shihipar confirmed the tracker was an experiment to prevent account abuse and protect against distillation, but said stronger mitigations had landed since then, and the team had already been planning to remove it. The rollback was completed shortly after the public disclosure.

China’s NVDB advisory affected versions 2.1.91 through 2.1.196, citing unauthorized data transmission of user region and identity identifiers to remote servers. The alert came just days after Alibaba barred staff from using Claude Code over security concerns. These developments unfold as Anthropic intensifies its push against foreign AI model distillation, accusing Chinese labs of using fraudulent accounts to extract millions of responses for training rival systems.

Previously on the topic:
Jul 3, 2026, 1:08 p.m.
Alibaba Bans Claude Code Over Backdoor Security Risks
Disclaimer

The content on this website is provided for information purposes only and does not constitute investment advice, an offer, or professional consultation. Crypto assets are high-risk and volatile — you may lose all funds. Some materials may include summaries and links to third-party sources; we are not responsible for their content or accuracy. Any decisions you make are at your own risk. Coinalertnews recommends independently verifying information and consulting with a professional before making any financial decisions based on this content.