Hacker News

Claude Tried to Hack 30 Companies. Nobody Asked It To

2026-03-1020:4222trufflesecurity.com

We gave AI agents simple research tasks on cloned corporate websites. When the legitimate path was broken, the agents autonomously discovered and exploited SQL injection vulnerabilities to complete…


Read the original article

riverdroid

Karma: 452
...
 @Hacker__News
@hacker._news

Comments

  • By blinkbat 2026-03-1021:451 reply

    They told it to try _everything_...

    • By eliemichel 2026-03-1022:52

      I had the same reaction at first, then noticed that they discuss this: the reason why they told that is because it is standard system prompt injected by most coding agent harnesses like Cursor and all, so it seems like a fair test setup.

HackerNews

About