Researcher claims Claude Desktop installs “spyware” on macOS

Researcher analysis found that Claude Desktop (com.anthropic.claudefordesktop) on macOS drops a Native Messaging host manifest into multiple Chromium-based browser profiles (including profiles for browsers not installed), pre-authorizing extension IDs and creating a local, user-privilege bridge that could enable session access, DOM reading, form filling and other browser automation; the behavior expands attack surface, is not documented in detail by Anthropic, and has been replicated on macOS though evidence of active abuse is not provided.