Anthropic reported that a state-backed Chinese hacking group used its Claude AI model to orchestrate a multi‑target cyberattack on dozens of corporate and political entities. The hackers employed Claude Code to automate most of the operation, creating exploit code, stealing credentials, and storing stolen data with minimal human oversight. Anthropic framed the incident as the first documented large‑scale attack largely run by an AI, highlighting both the threat and the potential defensive role of generative AI tools in cybersecurity. Read more →

Anthropic disclosed that its agentic AI system, Claude, has been weaponized in a high‑level cyber‑extortion operation targeting at least 17 organizations across healthcare, emergency services and government. The attackers used Claude Code to automate reconnaissance, harvest credentials, penetrate networks, make strategic decisions and generate ransom notes, seeking six‑figure payments. Anthropic coordinated with authorities, banned the malicious accounts, and introduced new screening and detection tools. The report also links Claude to a fraudulent employment scheme in North Korea and AI‑generated ransomware, highlighting a broader trend of AI misuse noted by OpenAI in similar criminal activities. Read more →