ProBackend
ai ai user surveillance
1 hour ago4 min read

Anthropic Pulled the Plug on a Secret Claude Code Tracker After It Was Exposed

A security researcher uncovered a hidden telemetry component in Claude Code that was silently monitoring users in China. Anthropic moved fast to remove it, calling the incident an oversight rather than deliberate surveillance.

The Tracker That Wasn't Supposed to Exist

Here's the thing about telemetry: most of us don't think twice about it. We click "I Agree" on a terms-of-service document we've never read, and we let the data flow. But when that telemetry starts targeting specific user populations without their knowledge? That's a different story entirely.

A security researcher recently found something buried inside Anthropic's Claude Code tool—a tracker that was silently monitoring users in China. No consent. No disclosure. Just... watching.

The discovery didn't sit well with anyone who cares about privacy, and it forced Anthropic into a corner they clearly didn't want to be in.

What Actually Happened

The tracker was embedded in Claude Code's telemetry infrastructure. Now, telemetry itself isn't inherently evil—companies need to understand how their tools are being used, fix bugs, improve performance. But there's a massive difference between collecting anonymous usage data to make your product better and running covert surveillance on a specific geographic population.

According to the researcher's findings, this component was specifically targeting users in China. That's not a bug. That's a feature.

The tracker operated without any clear disclosure in the tool's telemetry documentation. Users had no idea their activity was being monitored in this way. And that lack of transparency is what really sets this apart from standard telemetry practices.

Anthropic's Response Was Fast—But Was It Honest?

Once the researcher exposed what they'd found, Anthropic moved quickly. They removed the component. No debate, no delay.

The company described it as an oversight in telemetry implementation. Not intentional surveillance. Just a mistake.

I'll be honest—that explanation feels thin. When you're building an AI safety company, when your entire brand is built on being the responsible one in a wild west of AI development, you don't get to call covert tracking "an oversight" and expect people to buy it.

But I also understand that in the rush to ship features, things can slip through. Telemetry systems are complex. Components get added, modified, forgotten. The fact that they removed it so quickly suggests they recognized the problem and didn't try to defend it.

Why This Matters Beyond One Company

This incident isn't just about Anthropic. It's about the broader challenge AI companies face when they operate across international jurisdictions with different privacy expectations and regulations.

China has its own data privacy laws. The EU has GDPR. The US is still figuring it out. And when you're building a tool that's used globally, you need to navigate all of these frameworks simultaneously.

But here's where it gets complicated: sometimes the legal requirements in one jurisdiction conflict with the privacy expectations in another. Companies might find themselves in situations where what's legal isn't necessarily ethical.

The Claude Code tracker incident highlights this tension. Whether it was intentional or not, the result was the same: users in China were being monitored without their knowledge. That's a problem, regardless of intent.

The Bigger Picture for AI Safety

Anthropic built its reputation on being the company that takes AI safety seriously. They've published research on alignment, they've been transparent about their processes (relatively speaking), and they've positioned themselves as the alternative to less scrupulous AI developers.

This incident undermines that positioning. Not because of what they did—though the tracker itself is problematic—but because of how it reflects on their internal processes.

If a security researcher can find a hidden tracker that the company didn't know about, what else might be lurking in their codebase? How many other telemetry components are running without proper oversight?

What Users Should Do

If you're using Claude Code, here's what I'd suggest:

First, check the telemetry settings. Most AI tools now give you some control over what data gets collected. Turn off anything you're not comfortable with.

Second, stay informed. Follow security researchers who cover AI tools. They're the ones finding these issues before they become bigger problems.

Third, hold companies accountable. When you find something like this, speak up. The researcher who exposed the Claude Code tracker did everyone a favor by making it public.

Where Things Go From Here

Anthropic has removed the tracker. They've called it an oversight. The question is whether they'll make changes to prevent similar issues in the future.

I hope they do. I hope they implement better oversight for telemetry systems, more rigorous testing for privacy compliance, and clearer communication with users about what data they're collecting.

But I'll be watching. And so should you.

This is the kind of incident that could either strengthen trust in AI companies—if they handle it right—or erode it completely if they try to sweep it under the rug.

So far, Anthropic's response has been reasonable. Fast removal, acknowledgment of the issue, no defensive posturing. But actions speak louder than words.

Let's see what they do next.

The Tracker That Wasn't Supposed to Exist

More blogs