Unauthorized “Gift” Charges via Claude Saved Card, Anyone Else?

Detailed Analysis

A Reddit user posting to r/Anthropic on April 22, 2026 reports a serious pattern of unauthorized financial transactions originating from their Claude account, in which three separate $100 charges labeled "Claude Gift Max 5x" were attempted against their saved Mastercard — two successfully processing and a third blocked only by Mastercard's own identity verification system. The user did not initiate any of these purchases, and investigation inside the platform revealed the "gift" subscriptions had been sent to an unknown disposable email address. Despite changing their password, swapping out their saved card, and logging out of all devices, subsequent fraudulent transaction attempts continued on the replacement card the following day, strongly suggesting the attacker retained active session access or exploited a vulnerability in Anthropic's payment or gifting infrastructure rather than simply stealing stored credentials.

The research context confirms this is not an isolated incident. Multiple independent reports throughout early 2026 describe eerily similar patterns: unauthorized "Gift Max 20x" and "Claude Max 5x/20x" subscriptions charged to saved cards, overcharges beyond authorized amounts, duplicate invoices, and in at least one documented case, account suspensions tied to stolen credit cards being used specifically for Claude gift purchases. A March 2026 report details a separate anomaly in which gift code redemptions yielded only half the expected credits ($1,400 instead of $2,800 from 14 x $200 codes), suggesting systemic irregularities in Anthropic's gifting system that extend beyond simple account takeover. The clustering of these reports in the first half of 2026 points to either a persistent, unpatched vulnerability in how Claude's platform handles gifting transactions, or an organized exploitation campaign targeting Claude accounts with saved payment methods.

The support infrastructure failure compounds the severity of the underlying security issue. Anthropic's customer support, as described by multiple affected users, routes complaints through an automated assistant (Fin) that collects a message and promises follow-up via email, providing no case tracking, no escalation path, and no phone or live chat option. When users have received responses at all, they have been deflected to their banks rather than addressed at the platform level. This support model — adequate for billing questions and general assistance — is structurally inadequate for active fraud incidents requiring urgent account intervention. The absence of any public acknowledgment from Anthropic, despite multiple reports spanning weeks, leaves affected customers with no remediation path beyond bank disputes and self-managed defensive measures.

The broader significance of these reports lies in what they reveal about the security maturity of AI subscription platforms as they scale rapidly and introduce gift and credit transfer features. Gifting functionality creates a monetizable attack surface: unlike a personal subscription, gift purchases can be immediately transferred to anonymous addresses and redeemed before fraud is detected, making them an attractive vector for attackers who gain account access. Anthropic is not unique in facing this challenge — similar exploits have targeted gift card and subscription gifting systems across major consumer platforms — but the company's current support infrastructure and apparent lack of automated fraud detection on gift purchase velocity make Claude accounts a particularly low-friction target. As Anthropic continues expanding its consumer subscriber base with tiered Max plans, addressing both the technical vulnerability and the customer response capability will be essential to maintaining user trust at scale.