←back to thread

Claude for Chrome

(www.anthropic.com)
795 points davidbarker | 2 comments | 26 Aug 25 19:01 UTC | HN request time: 0s | source
Show context
dfabulich ◴[27 Aug 25 01:10 UTC] No.45034300[source]
Claude for Chrome seems to be walking right into the "lethal trifecta." https://simonwillison.net/2025/Jun/16/the-lethal-trifecta/

"The lethal trifecta of capabilities is:"

Access to your private data—one of the most common purposes of tools in the first place!

Exposure to untrusted content—any mechanism by which text (or images) controlled by a malicious attacker could become available to your LLM

The ability to externally communicate in a way that could be used to steal your data (I often call this “exfiltration” but I’m not confident that term is widely understood.)

If your agent combines these three features, an attacker can easily trick it into accessing your private data and sending it to that attacker.

replies(11): >>45034378 #>>45034587 #>>45034866 #>>45035318 #>>45035331 #>>45036212 #>>45036454 #>>45036497 #>>45036635 #>>45040651 #>>45041262 #
afarviral ◴[27 Aug 25 01:51 UTC] No.45034587[source]
How would you go about making it more secure but still getting to have your cake too? Off the top my head, could you: a) only ingest text that can be OCRd or somehow determine if it is human readable b) make it so text from the web session is isolated from the model with respect to triggering an action. Then it's simply a tradeoff at that point.
replies(3): >>45034626 #>>45035055 #>>45035249 #
jimbokun ◴[27 Aug 25 03:10 UTC] No.45035055[source]
I don't believe it's possible to give an LLM full access to your browser in a safe way at this point in time. There will need to be new and novel innovations to make that combination safe.
replies(2): >>45035323 #>>45036664 #
brookst ◴[27 Aug 25 03:59 UTC] No.45035323[source]
Is it possible to give your parents access to to your browser in a safe way?
replies(3): >>45035500 #>>45035910 #>>45036896 #
seemaze ◴[27 Aug 25 04:35 UTC] No.45035500[source]
That’s easy. Giving my parents a safe browser to utilize without me is the challenge.
replies(1): >>45035842 #
zwnow ◴[27 Aug 25 05:46 UTC] No.45035842[source]
Because there never were safe web browsers in the first place. The internet is fundamentally flawed and programmers are continously having to invent coping mechanisms to the underlying issue. This will never change.
replies(2): >>45036342 #>>45036864 #
1. Arisaka1 ◴[27 Aug 25 08:25 UTC] No.45036864[source]
Just because you can never have absolute safety and security doesn't mean that you should be deliberately introduce more vulnerabilities in a system. It doesn't mtif we're talking about operating systems or the browser itself.

We shouldn't be sacrificing every trade-off indiscriminately out of fear of being left behind in the "AI world".

replies(1): >>45036907 #
2. zwnow ◴[27 Aug 25 08:32 UTC] No.45036907[source]
To make it clear, I am fully against these types of AI tools. At least for as long as we did not solve security issues that come with them. We are really good at shipping bullshit nobody asked for without acknowledging security concerns. Most people out there can not operate a computer. A lot of people still click on obvious scam links they've received per email. Humanity is far from being ready for more complexity and more security related issues.