Alibaba bans Claude Code over alleged backdoor risks

sheelagay1 pts0 comments

Alibaba bans Claude Code over alleged backdoor risks

Skip to main content

Alibaba bans Claude Code over alleged backdoor risks

Get link

Facebook

Pinterest

Email

Other Apps

July 06, 2026

Alibaba is banning employees from using Anthropic's Claude Code over alleged backdoor risks

Alibaba has told employees to stop using Anthropic's Claude Code because of security concerns. Hidden code in the software could track if a user was in China or linked to a Chinese AI lab, according to Reuters. Starting July 10, employees must use Alibaba's own coding platform, Qoder.

"As Claude Code was recently discovered to carry back-door risks, after comprehensive evaluation, Claude Code has now been added to a list of high-risk software with security vulnerabilities," Alibaba said in an internal notice seen by the South China Morning Post.

The move came after security researchers shared findings on Reddit and GitHub, revealing that a version of Claude Code had been built to examine users' local environments — things like timezone settings and proxy configurations — and quietly embed identifying markers in the data transmitted to Anthropic. Anthropic already prohibits Chinese companies and foreign entities owned by those companies from using its models.

Available Now

Get GoPeek

Preview links without opening tabs. Available on Edge and Firefox. Chrome support coming soon.

Microsoft Edge

Add to Edge — free

Mozilla Firefox

Add to Firefox — free

Google Chrome<br>Soon

Coming to the Chrome Web Store

Demo →

On X, Thariq Shihipar — who works at Anthropic — described the behavior as "an experiment we launched in March that was meant to prevent account abuse from unauthorized resellers and protect against distillation," according to TechCrunch. "The team has landed stronger mitigations since then and we've actually been meaning to take this down for a while," Shihipar said.

The ban arrives amid a broader dispute between the two companies. Anthropic accused Alibaba last month of conducting what it described as the largest known distillation attack on its models to date. In a June 10 letter to two U.S. senators, Anthropic said entities affiliated with Alibaba used roughly 25,000 fraudulent accounts to run nearly 28.8 million exchanges with its models over approximately six weeks. Distillation involves training a weaker model on the outputs of a more powerful one, allowing developers to replicate capabilities without building from scratch.

Anthropic said that distillation effort targeted capabilities including agentic reasoning, software engineering proficiency, and long-horizon task completion. The company urged Washington to pursue stricter semiconductor export restrictions and impose penalties on AI developers caught running distillation operations.

A source cited by Reuters noted that enforcing Anthropic's access restrictions against individuals is difficult, since anyone can spin up a U.S.-based server to disguise where their traffic originates — but organizations like Alibaba are far more sensitive to the legal and compliance consequences of violating such terms. Alibaba has not publicly responded to Anthropic's distillation accusations.

Available Now

Get GoPeek

Preview links without opening tabs. Available on Edge and Firefox. Chrome support coming soon.

Microsoft Edge

Add to Edge — free

Mozilla Firefox

Add to Firefox — free

Google Chrome<br>Soon

Coming to the Chrome Web Store

Demo →

Using GoPeek on GitHub

Get link

Facebook

Pinterest

Email

Other Apps

Comments

Post a Comment

Popular posts from this blog

I bypassed AWS API Gateway auth with a trailing slash. Got $12K bounty.

April 10, 2026

(See original article:  I bypassed AWS API Gateway auth with a trailing slash. Got $12K bounty. ) I was poking at a fintech’s mobile API and noticed something that made no sense. GET /v1/accounts returned 401. GET /v1/accounts/ returned 200 with full account data. One character. Completely different security posture. What I was looking at The API ran on AWS HTTP API — the newer, cheaper alternative to REST API. Lambda authorizer checked a JWT against Cognito, returned an IAM policy. Standard. Routes in OpenAPI: YAML /v1/accounts : get : x-amazon-apigateway-integration : uri : arn:aws:apigateway:... /v1/accounts/{accountId} : get : x-amazon-apigateway-integration : uri : arn:aws:apigateway:... The authorizer ran on every request. But HTTP API makes two decisions: does this route exist, and does the authorizer allow it? Those two layers didn’t agree on what a "match" meant. The weird results I ran ffuf on the path. The results were… inconsistent....

Read more

Former Microsoft dev built a 2.5KB Notepad clone with zero AI features

July 02, 2026

Former Microsoft dev built a 2.5KB Notepad clone with zero AI features Dave Plummer started his programmer's career at Microsoft back in the MS-DOS days. He knows a thing or two about code optimization, which is why he is now trying to strip Notepad of the unwanted AI...

alibaba code anthropic claude edge firefox

Related Articles