Claude now 'uses' your Mac

Anthropic rolled out its new "computer use" capability for Claude on March 23, 2026, surfaceable through both Claude Code and the Cowork desktop experience as a research preview. (9to5mac.com) Access to Cowork is gated behind paid Claude tiers: Pro is the $20/month entry point and the Max plans that raise usage limits are priced roughly between $100 and $200 per month. (engadget.com) When connectors aren’t available, Claude will fall back to controlling the desktop UI—pointing, clicking, typing, opening apps, filling spreadsheets and navigating browsers—and users can dispatch tasks from their phone to execute on a desktop. (macrumors.com) Anthropic labels Cowork a research preview and explicitly warns it carries “unique risks due to its agentic nature and internet access.” Security researchers have published practical exploits—PromptArmor and independent teams disclosed a Files API exfiltration chain and prompt‑injection vectors that can upload sensitive files to an attacker’s account. (support.claude.com) Operators should note Cowork tasks consume usage quota far faster than standard chat interactions, and Anthropic’s quota and rolling‑window limits have already pushed some heavy users toward higher‑cost Max plans to avoid throttling. (sentisight.ai) Anthropic is marketing enterprise controls—SSO, domain capture, admin controls and audit logs—for organizational deployments even as outlets including The New Stack and ZDNet highlight those administrative safeguards alongside warnings about the tool’s operational and security tradeoffs. (claude.com)