Hacker used Anthropic’s Claude chatbot to attack multiple government agencies in Mexico

Here’s about this “golden” era of AI. A hacker has exploited Anthropic’s Claude chatbot to carry out attacks against Mexican government agencies, . This resulted in the theft of 150GB of official government data, including taxpayer records, employee credentials and more.

The hacker used Claude to find vulnerabilities in government networks and to write scripts to exploit them. It also tasked the chatbot with finding ways to automate data theft, as indicated by cybersecurity company Gambit Security. This started in December and continued for around a month.

It looks like the hacker was able to essentially jailbreak Claude with prompts, finally bypassing the chatbot’s guardrails. Claude originally refused the nefarious demands until eventually relenting.

“In total, it produced thousands of detailed reports that included ready-to-execute plans, telling the human operator exactly which internal targets to attack next and what credentials to use,” said Curtis Simpson, Gambit Security’s chief strategy officer.

Anthropic has investigated the claims, disrupted the activity and banned all of the accounts involved, according to a company representative. The spokesperson also said that its latest model, Claude Opus 4.6, includes tools to disrupt this kind of misuse.

It’s also been reported that this hacker used ChatGPT to supplement the attacks, using OpenAI’s chatbot to gather information on how to move through computer networks, determine which credentials were needed to access systems and how to avoid detection. OpenAI says it has identified attempts by the hacker to violate its usage policies and that the tools refused to comply.

The hacker remains unidentified. The attacks haven’t been attributed to a specific group, but Gambit Security did suggest they could be tied to a foreign government. It’s also unclear what the hacker wants to do with all of that data.

Mexico’s national digital agency hasn’t commented on the breach, but did note that cybersecurity is a priority. The state government of Jalisco denies that it was breached, saying only federal networks were impacted. However, Mexico’s national electoral institute also denied any breaches or unauthorized access in recent months. It’s worth noting that Gambit found at least 20 security vulnerabilities during its research that the country is likely not keen on highlighting.

This isn’t the first time Claude has been used for a major cyberattack. Last year, hackers in China manipulated the tool into attempting to , several of which were successful. Anthropic , which committed to never train an AI system unless it could guarantee in advance that safety measures were adequate. So who knows what fresh hell the future will bring as the company’s tools become more advanced.