A security researcher revealed how attackers can exploit Anthropic's Claude AI by using indirect prompt injections to extract user data. By tricking Claude into uploading files to the attacker's account, sensitive information, including chat conversations, can be exfiltrated. The researcher reported this issue, but Anthropic initially dismissed it as a model safety concern.