{"id":8248,"date":"2026-05-27T17:13:08","date_gmt":"2026-05-27T17:13:08","guid":{"rendered":"https:\/\/news.cybertechworld.co.in\/index.php\/2026\/05\/27\/malicious-npm-package-stole-files-from-claude-ai-user-directory-via-github\/"},"modified":"2026-05-27T17:13:08","modified_gmt":"2026-05-27T17:13:08","slug":"malicious-npm-package-stole-files-from-claude-ai-user-directory-via-github","status":"publish","type":"post","link":"https:\/\/news.cybertechworld.co.in\/index.php\/2026\/05\/27\/malicious-npm-package-stole-files-from-claude-ai-user-directory-via-github\/","title":{"rendered":"Malicious npm Package Stole Files From Claude AI User Directory via GitHub"},"content":{"rendered":"

\u200bCybersecurity researchers have discovered a new malicious package on the npm registry that comes with information stealing capabilities.<\/p>\n

According to OX Security, the package, named “mouse5212-super-formatter,” is designed to upload files from “\/mnt\/user-data,” a dedicated directory used by Anthropic’s Claude artificial intelligence (AI) tool to handle uploads and outputs in the background. The\u00a0Cybersecurity researchers have discovered a new malicious package on the npm registry that comes with information stealing capabilities.<\/p>\n

According to OX Security, the package, named “mouse5212-super-formatter,” is designed to upload files from “\/mnt\/user-data,” a dedicated directory used by Anthropic’s Claude artificial intelligence (AI) tool to handle uploads and outputs in the background. The\u00a0\u00a0The Hacker News<\/p>","protected":false},"excerpt":{"rendered":"

\u200bCybersecurity researchers have discovered a new malicious package on the npm registry that comes with information stealing capabilities. According to OX Security, the package, named “mouse5212-super-formatter,” is designed to upload files from “\/mnt\/user-data,” a dedicated directory used by Anthropic’s Claude artificial intelligence (AI) tool to handle uploads and outputs in the background. The\u00a0Cybersecurity researchers have… Read More »Malicious npm Package Stole Files From Claude AI User Directory via GitHub<\/span><\/a><\/p>\n","protected":false},"author":0,"featured_media":8249,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","_themeisle_gutenberg_block_has_review":false,"footnotes":""},"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts\/8248"}],"collection":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/comments?post=8248"}],"version-history":[{"count":0,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts\/8248\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/media\/8249"}],"wp:attachment":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/media?parent=8248"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/categories?post=8248"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/tags?post=8248"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}