NautiAINAUTEN NEWS
AInauten
43 / 133
tech-pub

The AI security nightmare is here and it looks suspiciously like lobster

February 19, 2026 at 06:58 PMUpdated: Feb 241 SourcesNauti

TL;DR

A hacker exploited a prompt injection vulnerability in Cline, an open-source AI coding agent powered by Anthropic's Claude.

Key Points

  • Manipulated instructions caused Claude to silently install the tool OpenClaw on users' machines.
  • Security researcher Adnan Khan had disclosed the vulnerability as a proof of concept just days before.
  • No advanced technique required: any external content Claude processes can serve as a covert command channel.
  • Funny as a stunt – alarming as a preview of autonomous AI agents running on personal computers.

Nauti's Take

Anyone who gives an AI agent full system permissions and lets it process external content unfiltered has essentially built the attack surface themselves. Prompt injection is no longer a niche concern – it's a working exploit in real-world deployments.

Until AI agents enforce strict sandboxing and permission separation, every external input is potentially a root-level command.

Video

Sources

19.2.26
The AI security nightmare is here and it looks suspiciously like lobster
The Verge AI
27.2.26
OpenAI and Amazon announce strategic partnership
OpenAI News
27.2.26
Anthropic says it ‘cannot in good conscience’ allow Pentagon to remove AI checks
The Guardian AI
26.2.26
CORPGEN advances AI agents for real work
Microsoft Research Blog
25.2.26
Gemini can now automate some multi-step tasks on Android
TechCrunch AI
#anthropic#agents#regulation#open-source