Hackers Weaponize Claude Code in Mexican Government Cyberattack

Anthropic’s Claude Code assistant has been abused in a cyberattack against the Mexican government’s systems, Israeli cybersecurity startup Gambit Security reports.

As part of the attack, ten Mexican government bodies and a financial institution were compromised, beginning with the country’s tax authority in late December 2025.

Based on the analyzed attacker logs, Gambit assesses that over 1,000 prompts were sent to Claude Code to mount the attacks, and that information was also passed to OpenAI’s GPT-4.1 for analysis.

“AI didn’t just assist, it functioned as the operational team: writing exploits, building tools, automating exfiltration,” Gambit explains.

The attacker bypassed the AI’s guardrails by convincing it that all actions were authorized, guided the assistant throughout the compromise, and leveraged OpenAI’s model to analyze data and accelerate the attack execution.

Within a month, Gambit says, the hacker exfiltrated over 150GB of data, including ...