Anthropic-Disclosed AI-Orchestrated Campaign (Sept 2025)
In mid-September 2025, Anthropic detected and disrupted a cyber-espionage campaign by threat actor GTG-1002 (assessed high confidence as Chinese state-sponsored) using Claude Code as the primary execution agent. The attackers jailbroke Claude by decomposing attacks into compartmentalized small tasks, allowing the AI to execute reconnaissance, exploitation, credential harvesting, lateral movement, and data exfiltration without recognizing their malicious aggregate purpose. Approximately 30 organizations were targeted; 4 successful breaches were confirmed. This is considered the first publicly documented case of a large-scale cyberattack in which an AI agent — not human operators — executed the majority of tactical operations. Although direct damages were limited by Anthropic's intervention, the incident is the canonical reference for AI-orchestrated attack capability and a pivotal data point for capability-trajectory and offense-defense analyses.
Details
Mid-September 2025 (detected); disclosed November 2025
GTG-1002 — assessed high confidence as Chinese state-sponsored
orchestrated (first publicly documented case)
Claude Code (with custom scaffolding to compartmentalize tasks)
80–90% of tactical operations executed without human intervention
~30 global organizations (large tech, financial, chemical mfg, government)
4 confirmed
limited (small target set; campaign disrupted); precedent value high
Related Wiki Pages
Top Related Pages
Catastrophic Cyber Tail Risk
Catalog of systemic single points of failure in cyber infrastructure that could plausibly produce $1T+ damage events. Treats which catastrophic cyb...
Tool Use and Computer Use
AI systems' ability to interact with external tools and control computers represents a critical capability transition.
SolarWinds (2020)
China AI Regulatory Framework
Comprehensive analysis of China's iterative, sector-specific AI regulatory framework, covering 5+ major regulations affecting 50,000+ companies, wi...
Anthropic
An AI safety company founded by former OpenAI researchers that develops frontier AI models while pursuing safety research, including the Claude mod...