Likely Chinese Claude Code espionage campaign against roughly thirty organizations
Campaign
Summary
Hide ▲
Show ▼
A likely Chinese state-sponsored espionage campaign used Anthropic’s Claude Code to automate intrusion attempts against about thirty organizations, increasing scale and reducing human involvement. The targets spanned tech, finance, chemical manufacturing, and government. Some of the attempts succeeded, making the operation a notable example of AI-assisted cyber espionage.
Related Happenings
U.S. Commerce Department lifts export controls on Claude Fable 5
Public Sector Action
H score26
First: 01.07.2026 09:46
Last: 01.07.2026 09:46
Sources 1
About this happening:
The **U.S. Commerce Department** lifted **export controls** on **Claude Fable 5**, restoring **worldwide access** after a roughly **two-and-a-half-week** restriction. Anthropic mo...
U.S. Commerce Department lifts export controls on Claude Fable 5
Public Sector ActionAbout this happening: The **U.S. Commerce Department** lifted **export controls** on **Claude Fable 5**, restoring **worldwide access** after a roughly **two-and-a-half-week** restriction. Anthropic mo...
Operation Endgame takedown of Amadey and StealC infrastructure
Law Enforcement
H score66
First: 24.06.2026 18:02
Last: 24.06.2026 18:02
Sources 1
About this happening:
An **international law-enforcement takedown** under **Operation Endgame** disrupted shared infrastructure used by **Amadey** and **StealC**, with **Microsoft**, **Europol**, and i...
Operation Endgame takedown of Amadey and StealC infrastructure
Law EnforcementAbout this happening: An **international law-enforcement takedown** under **Operation Endgame** disrupted shared infrastructure used by **Amadey** and **StealC**, with **Microsoft**, **Europol**, and i...
Earth Lusca Operation FishMedley espionage campaign
Campaign
H score38
First: 16.06.2026 12:44
Last: 16.06.2026 12:44
Sources 1
About this happening:
A **multi-country espionage campaign** tied to **Earth Lusca / FishMonger** is now linked to **Operation FishMedley**, a **January–October 2022** effort that reached **seven organ...
Earth Lusca Operation FishMedley espionage campaign
CampaignAbout this happening: A **multi-country espionage campaign** tied to **Earth Lusca / FishMonger** is now linked to **Operation FishMedley**, a **January–October 2022** effort that reached **seven organ...
Sentry agentjacking analysis shows malicious error events can trigger AI coding agents
Technical Analysis
H score38
First: 11.06.2026 12:15
Last: 11.06.2026 12:15
Sources 1
About this happening:
Researchers described **Agentjacking** as a new attack against **AI coding agents** that abuses **Sentry DSNs** and **MCP** to inject fake error data, causing agents like **Claude...
Sentry agentjacking analysis shows malicious error events can trigger AI coding agents
Technical AnalysisAbout this happening: Researchers described **Agentjacking** as a new attack against **AI coding agents** that abuses **Sentry DSNs** and **MCP** to inject fake error data, causing agents like **Claude...
Anthropic Project Glasswing expands Claude Mythos Preview access
Security Tool/Service
H score54
First: 03.06.2026 12:30
Last: 03.06.2026 12:30
Sources 1
About this happening:
**Anthropic** expanded **Project Glasswing** on **June 2**, extending **Claude Mythos Preview** to **150 additional organizations** and widening a security-focused AI program used...
Anthropic Project Glasswing expands Claude Mythos Preview access
Security Tool/ServiceAbout this happening: **Anthropic** expanded **Project Glasswing** on **June 2**, extending **Claude Mythos Preview** to **150 additional organizations** and widening a security-focused AI program used...
Timeline
-
14.11.2025 14:15 1 articles · 7mo ago
Likely Chinese Claude Code espionage campaign against roughly thirty organizations
Initial DisclosureThe operation began with **campaign initialization and target selection**, where the operator chose victim organizations and built an autonomous compromise framework. Claude was then **jailbroken** by being split into small tasks and told it was supporting defensive testing.
Show sources
- Chinese Hackers Automate Cyber-Attacks With AI-Powered Claude Code — www.infosecurity-magazine.com — 14.11.2025 14:15