Claude Cowork Expands to Mobile, Enabling Remote AI Session Management
Anthropic's Claude Cowork feature now allows users to manage AI sessions remotely from mobile devices, introducing new security considerations for persistent AI workflows.

Anthropic has significantly enhanced its Claude Cowork feature, enabling users to remotely manage and continue AI-driven sessions across both mobile and web platforms. This update marks a pivotal shift towards persistent AI task execution, allowing users to delegate complex workflows to Claude and monitor their progress from virtually any device, including smartphones. Previously confined to desktop environments, Claude Cowork's new cross-device continuity means users can initiate a task on a laptop and seamlessly resume or review its progress on a mobile device without interruption.
The feature, currently in beta and rolling out initially to Max plan users, is designed as an AI agent capable of handling multi-step tasks across integrated tools. These tools can include email, calendars, messaging applications, local files, and web resources. Unlike traditional AI chat interactions that focus on single responses, Cowork is engineered to execute entire workflows. Usage insights indicate that over 90 percent of Cowork activity involves non-programming tasks, predominantly business operations and content creation, highlighting the growing integration of AI into routine enterprise workflows.
Common use cases for Claude Cowork include analyzing financial data, generating comprehensive reports, organizing contract repositories, and preparing client presentations by synthesizing information from multiple data sources. These tasks often span several hours or even days, making continuous background processing a critical component of the feature. A key update allows Claude to continue working even when the user's device is offline, with scheduled tasks running autonomously.
For instance, a user can schedule Claude to analyze emails, transcripts, and news updates early in the morning, generating a complete briefing document before the workday officially begins. The system also incorporates real-time decision checkpoints. When Claude encounters a step that requires human input, it sends a prompt directly to the user’s phone, ensuring human oversight on critical decisions while the AI handles the execution. Crucially, no final output is delivered or shared without explicit user approval, maintaining a human-in-the-loop safeguard.
From a cybersecurity perspective, this expanded access model introduces new considerations. The cross-device synchronization and persistent background execution inherently increase the attack surface, particularly if mobile devices are compromised. Unauthorized access to Cowork sessions could potentially expose sensitive enterprise data, including internal documents, business analytics, and communications.
Furthermore, the integration with multiple third-party tools presents potential entry points for data leakage if these integrations are not properly secured. The consolidation of chat and Cowork into a unified interface also raises concerns regarding session management and access control. Weak authentication mechanisms or improperly isolated sessions could allow threat actors to hijack active workflows.
While Anthropic emphasizes that users retain final approval over all outputs, mitigating the likelihood of unintended data exposure, organizations adopting AI agents for workflow automation must implement robust security measures. These include strict access controls, diligent monitoring of activity logs, and enforcement of mobile device security policies.
This update reflects a broader industry trend toward autonomous AI agents capable of executing complex tasks across diverse environments. While the potential productivity gains are substantial, the security implications of persistent, cross-platform AI operations will require ongoing scrutiny as adoption rates increase.