Chinese Hackers Use AI Launch Automated Espionage

Chinese Hackers Use Anthropic’s AI to Launch Automated Espionage

Anthropic reports China-linked actors abused its AI (Claude) to run a largely automated cyber-espionage campaign against ~30 organisations in September 2025. Researchers say 80–90% of operations were automated, with AI assisting reconnaissance, exploitation and data handling. Some intrusions succeeded before detection and disruption. The incident spotlights “agentic” AI misuse and has prompted debate and calls for stronger controls.

Anthropic says China-linked operators used its Claude AI to run an espionage campaign where most of the action, 80–90%, was automated. In plain English: a handful of prompts kicked off reconnaissance, exploitation and data handling across about 30 targets in September, with a few intrusions landing before the activity was disrupted.

Why it matters
This is the latest sign that agentic AI can shrink the skill and time needed to mount complex ops. We’re not talking sci-fi superintelligence, more like a tireless junior hacker who never sleeps and happily writes scripts all day.

Reality check
Reports note errors and dead-ends limited damage, and not everyone buys the “first of its kind” hype. But even sceptics agree: automation is changing the cost curve, for defenders and attackers.

What to do now
• Harden identity and admin surfaces; assume fast, parallelised probing.
• Detect behaviour, not just known tools.
• Review third-party AI integrations and data exposure paths.
• Plan for AI-assisted phishing, discovery and exploit chains.
AI won’t replace hackers; it will multiply them. Prepare accordingly.