Digital Independence with the Immich 3.0 Update
The Digital Standoff: Anthropic vs. Alibaba

As of July 10, Alibaba has imposed a strict prohibition on the use of Claude Code within its corporate environments. The official catalyst for this ban was the discovery of critical security risks involving embedded "backdoors" within the software. This restriction was reported by Reuters, citing informed sources, and the financial publication Yicai; Alibaba itself has declined to issue a public comment.
The technical crux of the issue lies in binary code analysis conducted by independent researchers. The findings reveal that when operating via third-party proxy servers, Claude Code covertly verified system time zones and hostnames. Hardcoded into the software was a list of target domains, which included China's largest tech giants—Baidu, ByteDance, and Alibaba itself—as well as leading Chinese AI laboratories.
Of particular interest is the method used for data exfiltration. The verification results were transmitted via steganography: delimiters and apostrophes within the system prompt's date string were subtly altered to encode information. In effect, the tool was performing covert monitoring of its deployment environment without notifying the user.
Anthropic’s response has been measured. Representatives for the Claude Code team characterized the mechanism as an "experiment" designed to combat unauthorized resellers and prevent model distillation. In this context, distillation refers to the process of training a smaller, more cost-effective model using the outputs of a more powerful system—essentially a form of intellectual property theft. The company stated that these hidden markers were removed in version 2.1.197; however, the "anti-reseller" explanation has only partially satisfied the security community, given the extensive level of local machine access granted to such tools.
This incident represents the latest escalation in a protracted conflict between the two parties. As early as June, Anthropic petitioned U.S. senators regarding systematic abuses by operators linked to Alibaba and its Qwen laboratory. According to Anthropic, approximately 25,000 fraudulent accounts were created to facilitate nearly 29 million data exchanges with Claude to train proprietary models. The situation has thus become a mirror image of previous grievances: while Anthropic previously accused Alibaba of industrial espionage and weight theft, Alibaba is now accusing the developer of covert surveillance.
There is a striking paradox at play here: officially, Claude is unavailable in China due to national security considerations, and Anthropic maintains no commercial sales operations there. The very act of implementing an internal ban indirectly confirms that Alibaba employees were actively utilizing the tool by bypassing regional restrictions.
Despite the outcry, it is worth noting a certain deficit of verifiable data; the reports of the "backdoor" rely on anonymous sources and private research, as no major cybersecurity firm has yet published an independent audit of the code. Nevertheless, the market reacted instantaneously—Alibaba's shares on the Hong Kong Stock Exchange dipped by 0.7% while the Hang Seng index rose, underscoring investor sensitivity to reputational risks surrounding data security.

