Large language models can read “invisible characters” because of a component in the Unicode text encoding standard and combined with normal text that users unknowingly paste into prompts in a practice known as “ASCII smuggling,” ARS Technica reports. The LLMs most susceptible to ASCII smuggling were the Claude web app and Claude API from Anthropic.
Full story