"Chinese cyber spies used Anthropic's Claude Code AI tool to attempt digital break-ins at about 30 high-profile companies and government organizations - and the government-backed snoops "succeeded in a small number of cases," according to a Thursday report from the AI company. The mid-September operation targeted large tech companies, financial institutions, chemical manufacturers, and government agencies."
"While a human selected the targets, "this marks the first documented case of agentic AI successfully obtaining access to confirmed high-value targets for intelligence collection, including major technology corporations and government agencies," Anthropic's threat hunters wrote in a 13-page document [PDF]."
"The AI vendor tracks the Chinese state-sponsored group behind the espionage campaign as GTG-1002, and says its operatives used Claude Code and Model Context Protocol (MCP) to run the attacks without a human in the tactical execution loop. A human-developed framework used Claude to orchestrate multi-stage attacks, which were then carried out by several Claude sub-agents all performing specific tasks."
The Chinese state-sponsored group tracked as GTG-1002 used Anthropic's Claude Code and Model Context Protocol (MCP) to attempt intrusions at about 30 high-value companies and government organizations in mid-September, succeeding in a small number of cases. A human operator selected targets while a human-developed framework orchestrated multi-stage attacks executed by multiple Claude sub-agents. Sub-agents mapped attack surfaces, scanned infrastructure, found vulnerabilities, researched exploitation techniques, developed exploit chains and custom payloads, and validated credentials. Human operators reviewed AI outputs for two to ten minutes before signing off. Sub-agents escalated privileges, moved laterally, accessed, and exfiltrated sensitive data.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]