China’s government-backed cybersecurity body has flagged a “security backdoor” in Anthropic’s AI coding tool Claude Code, urging users to uninstall it or update to the latest version.
The National Vulnerability Database (NVDB), which is linked to China’s Ministry of Industry and Information Technology, posted the warning on July 8 via its WeChat account.

The NVDB said affected versions run from Claude Code 2.1.91 through 2.1.196. It claimed these versions could collect users’ geographic locations and identity-related data, then send that information to remote servers without user consent.
The agency called the issue a “severe threat” and told organizations to conduct a full system review right away.
Before the NVDB went public, Chinese tech giant Alibaba had already moved to restrict the tool internally. The company told employees last week that Claude Code would be banned for work use starting July 10, directing staff to use its own in-house coding assistant, Qoder, instead.
Alibaba cited the same backdoor security concerns flagged by the NVDB.
This adds another layer to the already strained relationship between Alibaba and Anthropic. Anthropic has previously accused Alibaba and other Chinese firms of using a technique called “distillation” — training smaller AI models on the outputs of more advanced ones — to copy its models’ capabilities.
Anthropic has not issued a formal public response to China’s warning.
However, Claude Code engineer Thariq Shihipar addressed the issue on X last week after reports first surfaced in specialist tech media.
Shihipar said the data tracking was part of an experiment launched in March. The goal was to prevent account abuse from unauthorized resellers and to protect against model distillation.
Anthropic blocks users and companies in China and other countries it considers adversarial from accessing its products. Despite this, many Chinese developers continue to use Claude Code through VPN services and overseas proxy servers.
The NVDB also recommended that organizations tighten controls on external network access and increase traffic monitoring to prevent unauthorized data transfers.
As of the time of reporting, Anthropic had not responded to media requests for comment on the NVDB’s specific allegations.
The post China Says Anthropic’s Coding Tool Was Secretly Sending Your Data — Here’s What We Know appeared first on CoinCentral.

