[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"branding":3,"analytics":7,"article-researcher-tricks-claude-into-exposing-stored-user-data":10,"sections":34},{"siteName":4,"siteTagline":5,"publisherName":4,"contactEmail":6},"The Revision","Tech news, decoded.","editor@therevision.news",{"gaMeasurementId":8,"adsenseClientId":9},"G-ZW2MV82GYR","ca-pub-8533917693782264",{"article":11},{"id":12,"slug":13,"title":14,"dek":15,"body_md":16,"tags_json":17,"published_at":18,"created_at":19,"updated_at":20,"status":21,"review_note":22,"review_notes":23,"image_url":22,"persona_id":22,"persona_name":22,"section":24,"tags":25,"sources":29,"feedback":33,"feedback_at":22,"cost_usd":33,"total_tokens":33},4713,"researcher-tricks-claude-into-exposing-stored-user-data","Researcher Tricks Claude Into Exposing Stored User Data","A security researcher demonstrated that Claude's memory feature can be manipulated into revealing private information users stored in the AI.","A security researcher published a technique for extracting private data from Claude's memory feature.\n\nThe researcher documented an attack on Claude's ability to retain information across conversations, a feature Anthropic has been promoting as a way to make the assistant more personalized over time. The method, detailed in a post titled \"The Memory Heist,\" involves manipulating Claude into disclosing stored user data that should remain private. The writeup picked up 212 points and 81 comments online within hours of publication.\n\nClaude's memory feature is designed for people who want the AI to remember personal context: health issues, work situations, preferences across sessions. An attack that can drain those memories does not just expose a technical flaw; it challenges the core premise that sharing personal context with an AI is safe. Anthropic has been positioning memory as a selling point for Claude, so a publicly documented exploit is badly timed.\n\nAI memory attacks are not new, and ChatGPT's memory feature has faced similar scrutiny, but each fresh public demonstration makes \"we're working on it\" a harder line to hold.","[\"ai\",\"security\",\"privacy\",\"claude\"]","2026-07-15T06:28:00.000Z","2026-07-15T08:49:56.753Z","2026-07-15T08:49:59.655Z","published",null,[],"security",[26,24,27,28],"ai","privacy","claude",[30],{"name":31,"url":32},"Hacker News","https:\u002F\u002Fwww.ayush.digital\u002Fblog\u002Fthe-memory-heist",0,{"sections":35},[36,40,44,49,54,59,64,69,74,79,84,88,93,98],{"name":37,"slug":26,"count":38,"latest_published_at":39},"AI",2583,"2026-07-15T21:33:20.000Z",{"name":41,"slug":24,"count":42,"latest_published_at":43},"Security",294,"2026-07-15T19:59:48.000Z",{"name":45,"slug":46,"count":47,"latest_published_at":48},"Deals","deals",179,"2026-06-29T20:02:07.000Z",{"name":50,"slug":51,"count":52,"latest_published_at":53},"Policy","policy",158,"2026-07-16T00:02:48.000Z",{"name":55,"slug":56,"count":57,"latest_published_at":58},"Hardware","hardware",122,"2026-07-14T19:46:26.000Z",{"name":60,"slug":61,"count":62,"latest_published_at":63},"Consumer Tech","consumer-tech",93,"2026-07-13T13:20:48.000Z",{"name":65,"slug":66,"count":67,"latest_published_at":68},"Software","software",70,"2026-07-13T19:52:25.000Z",{"name":70,"slug":71,"count":72,"latest_published_at":73},"Science","science",66,"2026-07-10T10:29:37.000Z",{"name":75,"slug":76,"count":77,"latest_published_at":78},"Dev Tools","dev-tools",59,"2026-07-07T04:00:00.000Z",{"name":80,"slug":81,"count":82,"latest_published_at":83},"Gaming","gaming",41,"2026-07-09T04:00:00.000Z",{"name":85,"slug":86,"count":82,"latest_published_at":87},"Startups","startups","2026-06-29T20:55:50.000Z",{"name":89,"slug":90,"count":91,"latest_published_at":92},"General","general",29,"2026-07-10T22:28:58.000Z",{"name":94,"slug":95,"count":96,"latest_published_at":97},"Reviews","reviews",20,"2026-06-24T12:00:01.000Z",{"name":99,"slug":100,"count":101,"latest_published_at":102},"How-To","how-to",6,"2026-06-16T09:00:00.000Z"]