Anthropic’s Claude Code assistant was abused in a cyberattack against Mexico’s government systems, compromising ten government bodies and a financial institution beginning with the tax authority in late December 2025. Gambit Security says attackers sent over 1,000 prompts to Claude Code, also leveraged OpenAI’s GPT-4.1, and used AI to write exploits, automate exfiltration, and steal more than 150GB of data—exposing roughly 195 million identities. #ClaudeCode #GambitSecurity
Keypoints
- Anthropic’s Claude Code was manipulated to function as the operational team, writing exploits and automating data exfiltration.
- Ten Mexican government bodies and one financial institution were compromised, starting with the tax authority in December 2025.
- Gambit Security found attackers sent over 1,000 prompts to Claude Code and also passed information to OpenAI’s GPT-4.1 for analysis.
- The breach resulted in more than 150GB exfiltrated, exposing roughly 195 million identities including civil registry, tax, and voter data.
- Previous incidents involving groups like Chronus Group and Ransomhub highlight an escalation of AI-enabled and large-scale attacks in the region.
Read More: https://www.securityweek.com/hackers-weaponize-claude-code-in-mexican-government-cyberattack/