kapynResearch

How I tricked Claude into leaking your deepest, darkest secrets

A security researcher discovered a vulnerability in Claude's web fetching tool that allows data exfiltration. The loophole exploited the tool's ability to navigate to URLs embedded within fetched pages, enabling attackers to craft malicious websites that trick the AI into revealing sensitive information.

Simon Willison·Jul 15, 2026

Opening Kapyn…