Four research teams found the same “confused deputy” trust failure spanning Claude in Chrome, Claude Code, OAuth token theft, and even OT/SCADA targeting. In each case, Claude executes with real capabilities but can’t tell an authorized user from an adversary using the same interface. Researchers say isolated patches won’t fix the shared authorization gap—and even token rotation can fail.
Swipe through stories, personalise your feed, and save articles for later — all on the app.
