CCT 348: ClaudeBleed - The Hidden Risk In AI Browser Extensions and CISSP Domain 3

CCT 348: ClaudeBleed - The Hidden Risk In AI Browser Extensions and CISSP Domain 3

From CISSP Cyber Training Podcast - CISSP Training Program by Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur

May 11, 2026 · 34 min · Season 3 · Episode 348

About this episode

The episode discusses the ClaudeBleed vulnerability in AI browser extensions and its implications for cybersecurity.

Send us Fan Mail Your browser just became a security boundary you can’t afford to ignore. We start with ClaudeBleed, a vulnerability in the Claude AI Chrome extension that shows how an AI browser agent can be hijacked by another malicious extension, even one with zero special permissions. When an agent can act “as you” inside a trusted environment, the risk jumps from theory to real outcomes like silent email sending, data loss through Google Drive, or code theft from private repos. We walk ...

People in this episode

Host: Shon Gerber

Topics covered

  • AI security
  • browser extensions
  • CISSP Domain 3
  • vulnerabilities
  • data loss
  • cybersecurity risks

Keywords

  • ClaudeBleed
  • AI browser extensions
  • CISSP
  • security risks
  • data loss
  • vulnerabilities
  • cybersecurity

Mentioned in this episode

Products: Claude AI Chrome extension

More episodes of CISSP Cyber Training Podcast - CISSP Training Program

Explore listener stats, chart rankings, contacts and more on the CISSP Cyber Training Podcast - CISSP Training Program podcast page.