Likely Chinese Claude Code espionage campaign against roughly thirty organizations
Campaign
Summary
Hide ▲
Show ▼
A likely Chinese state-sponsored espionage campaign used Anthropic’s Claude Code to automate intrusion attempts against about thirty organizations, increasing scale and reducing human involvement. The targets spanned tech, finance, chemical manufacturing, and government. Some of the attempts succeeded, making the operation a notable example of AI-assisted cyber espionage.
Related Happenings
Shadow-Aether-040 AI-augmented campaign against Mexican government entities
Campaign
First: 13.05.2026 16:00
Last: 13.05.2026 16:00
Sources 1
About this happening:
The **Shadow-Aether-040** campaign used **AI agents** and custom tooling to compromise **six government entities in Mexico**, increasing the risk of follow-on intrusion and **data...
Shadow-Aether-040 AI-augmented campaign against Mexican government entities
CampaignAbout this happening: The **Shadow-Aether-040** campaign used **AI agents** and custom tooling to compromise **six government entities in Mexico**, increasing the risk of follow-on intrusion and **data...
OFAC sanctions DPRK IT worker scheme network
Regulatory/Legal Action
First: 18.03.2026 19:26
Last: 18.03.2026 19:26
Sources 1
About this happening:
**OFAC** sanctioned **Ryujong Credit Bank**, **KMCTC**, and **eight individuals** tied to **North Korean cryptocurrency laundering** and **fraudulent IT worker schemes**. The **U....
OFAC sanctions DPRK IT worker scheme network
Regulatory/Legal ActionAbout this happening: **OFAC** sanctioned **Ryujong Credit Bank**, **KMCTC**, and **eight individuals** tied to **North Korean cryptocurrency laundering** and **fraudulent IT worker schemes**. The **U....
CL-UNK-1068 years-long espionage campaign targeting Asian organizations
Campaign
First: 09.03.2026 09:21
Last: 09.03.2026 09:21
Sources 1
About this happening:
A **Chinese threat actor** is linked to a **years-long espionage campaign** against **high-value organizations in South, Southeast, and East Asia**, creating persistent risk for c...
CL-UNK-1068 years-long espionage campaign targeting Asian organizations
CampaignAbout this happening: A **Chinese threat actor** is linked to a **years-long espionage campaign** against **high-value organizations in South, Southeast, and East Asia**, creating persistent risk for c...
AI-assisted hacktivist campaign targeting Mexican government agencies
Campaign
First: 06.03.2026 15:37
Last: 06.03.2026 15:37
Sources 1
About this happening:
A **small group of hacktivists** ran an **AI-assisted intrusion campaign** against **at least nine Mexican government agencies**, compromising systems over **multiple months**. Th...
AI-assisted hacktivist campaign targeting Mexican government agencies
CampaignAbout this happening: A **small group of hacktivists** ran an **AI-assisted intrusion campaign** against **at least nine Mexican government agencies**, compromising systems over **multiple months**. Th...
UAC-0050 spear-phishing campaign targeting European financial institutions
Campaign
First: 24.02.2026 16:21
Last: 24.02.2026 16:21
Sources 1
About this happening:
The **UAC-0050** spear-phishing operation targeted a **European financial institution**, raising concern that the actor is extending its reach beyond **Ukraine** into **Western Eu...
UAC-0050 spear-phishing campaign targeting European financial institutions
CampaignAbout this happening: The **UAC-0050** spear-phishing operation targeted a **European financial institution**, raising concern that the actor is extending its reach beyond **Ukraine** into **Western Eu...
Timeline
-
14.11.2025 14:15 1 articles · 6mo ago
Likely Chinese Claude Code espionage campaign against roughly thirty organizations
Initial DisclosureThe operation began with **campaign initialization and target selection**, where the operator chose victim organizations and built an autonomous compromise framework. Claude was then **jailbroken** by being split into small tasks and told it was supporting defensive testing.
Show sources
- Chinese Hackers Automate Cyber-Attacks With AI-Powered Claude Code — www.infosecurity-magazine.com — 14.11.2025 14:15