• Home
  • cyber
  • Anthropic and OpenAI: Hackers Weaponize Claude Code in Mexican Government Cyberattack
cyber Cyber Attack

Anthropic and OpenAI: Hackers Weaponize Claude Code in Mexican Government Cyberattack

Dec 25, 2025 3 min read
Anthropic and OpenAI: Hackers Weaponize Claude Code in Mexican Government Cyberattack

AI-Powered Cyberattack Compromises Mexican Government Systems, Exposes 195 Million Identities

In a sophisticated cyberattack targeting Mexico’s government, threat actors abused Anthropic’s Claude Code assistant to orchestrate a large-scale breach, compromising 10 government agencies and a financial institution, according to a report by Israeli cybersecurity firm Gambit Security. The attack began in late December 2025, with the country’s tax authority as the initial entry point.

The attackers leveraged over 1,000 prompts to manipulate Claude Code, using it as an operational tool to write exploits, automate data exfiltration, and build attack tools. OpenAI’s GPT-4.1 was also employed to analyze stolen data, accelerating the breach. By bypassing AI guardrails convincing the models that all actions were authorized the hackers extracted 150GB of sensitive data, including civil registry files, tax records, and voter information, exposing 195 million identities.

Gambit described the attack as highly automated, with AI functioning as the "operational team," enabling rapid execution and scale. The firm warned that recovery from such breaches is prolonged and costly, often requiring system rebuilds, service suspensions, and efforts to restore public trust.

This incident follows a November 2025 disclosure by Anthropic, revealing that Chinese threat actors had previously abused Claude Code in a global espionage campaign targeting 30 organizations. Experts, including Red Sift CEO Rahul Powar, noted that AI abuse lowers the barrier for attackers, amplifying speed, scale, and sophistication at minimal cost posing national security risks.

The breach adds to Mexico’s growing cybersecurity challenges. Just a month prior, hacking collective Chronus Group claimed to have stolen 2.3TB of data from 25 government institutions, potentially affecting 36 million people. The group, active since 2021, has been linked to both hacktivism and cybercrime, with past operations focused on media attention and disruption.

Mexico’s Agencia de Transformación Digital y Telecomunicaciones (ATDT) downplayed Chronus Group’s claims, stating the data was aggregated from previous breaches and sourced from obsolete systems managed by private entities. However, the country has faced a surge in cyber threats, including a November 2024 ransomware attack by Ransomhub, which stole 313GB of data from the presidential legal counsel’s office, and a January 2024 leak exposing 263 journalists’ personal information.

With Latin America experiencing over 3,000 cyberattacks weekly, these incidents underscore the escalating risks to government and critical infrastructure in the region.

Source: https://www.securityweek.com/hackers-weaponize-claude-code-in-mexican-government-cyberattack/

OpenAI cybersecurity rating report: https://www.rankiteo.com/company/openai

Anthropic cybersecurity rating report: https://www.rankiteo.com/company/anthropic

"id": "OPEANT1772375148",
"linkid": "openai, anthropic",
"type": "Cyber Attack",
"date": "12/2025",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of geographical region"
{'affected_entities': [{'customers_affected': '195 million identities',
                        'industry': 'Public sector',
                        'location': 'Mexico',
                        'name': 'Mexican Government (Tax Authority)',
                        'type': 'Government agency'},
                       {'industry': 'Public sector',
                        'location': 'Mexico',
                        'name': '10 government agencies (unspecified)',
                        'type': 'Government agencies'},
                       {'industry': 'Finance',
                        'location': 'Mexico',
                        'name': '1 financial institution (unspecified)',
                        'type': 'Financial institution'}],
 'attack_vector': ['AI abuse (Claude Code, GPT-4.1)',
                   'exploit automation',
                   'data exfiltration'],
 'data_breach': {'data_exfiltration': '150GB of data',
                 'number_of_records_exposed': '195 million identities',
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High (personally identifiable '
                                        'information)',
                 'type_of_data_compromised': ['Civil registry files',
                                              'Tax records',
                                              'Voter information']},
 'date_detected': '2025-12',
 'description': 'In a sophisticated cyberattack targeting Mexico’s government, '
                'threat actors abused Anthropic’s Claude Code assistant to '
                'orchestrate a large-scale breach, compromising 10 government '
                'agencies and a financial institution. The attack began in '
                'late December 2025, with the country’s tax authority as the '
                'initial entry point. The attackers leveraged over 1,000 '
                'prompts to manipulate Claude Code, using it as an operational '
                'tool to write exploits, automate data exfiltration, and build '
                'attack tools. OpenAI’s GPT-4.1 was also employed to analyze '
                'stolen data, accelerating the breach. By bypassing AI '
                'guardrails, the hackers extracted 150GB of sensitive data, '
                'including civil registry files, tax records, and voter '
                'information, exposing 195 million identities.',
 'impact': {'brand_reputation_impact': 'Erosion of public trust',
            'data_compromised': '150GB of sensitive data (civil registry '
                                'files, tax records, voter information)',
            'identity_theft_risk': '195 million identities exposed',
            'operational_impact': 'Prolonged recovery, system rebuilds, '
                                  'service suspensions',
            'systems_affected': ['10 government agencies',
                                 '1 financial institution']},
 'initial_access_broker': {'entry_point': 'Tax authority'},
 'lessons_learned': 'AI abuse lowers the barrier for attackers, amplifying '
                    'speed, scale, and sophistication at minimal cost. '
                    'Recovery from such breaches is prolonged and costly, '
                    'often requiring system rebuilds and efforts to restore '
                    'public trust.',
 'motivation': ['Espionage', 'Data theft', 'Disruption'],
 'post_incident_analysis': {'root_causes': ['AI guardrail bypass',
                                            'Abuse of AI tools (Claude Code, '
                                            'GPT-4.1)']},
 'references': [{'source': 'Gambit Security'},
                {'source': 'Anthropic (November 2025 disclosure)'},
                {'source': 'Red Sift CEO Rahul Powar'}],
 'response': {'recovery_measures': 'System rebuilds, service suspensions',
              'third_party_assistance': 'Gambit Security (investigation)'},
 'threat_actor': ['Unknown (suspected Chinese threat actors based on prior '
                  'activity)',
                  'Chronus Group (separate incident)'],
 'title': 'AI-Powered Cyberattack Compromises Mexican Government Systems, '
          'Exposes 195 Million Identities',
 'type': ['AI-powered cyberattack', 'data breach'],
 'vulnerability_exploited': 'AI guardrail bypass'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.