Stories
Slash Boxes
Comments

SoylentNews is people

SoylentNews is powered by your submissions, so send in your scoop. Only 16 submissions in the queue.

A Hacker Used Claude to Breach Mexico's Government and Steal 150GB of Data

posted by mrpg on Saturday February 28, @06:30AM   Printer-friendly
from the piratas-informáticos dept.
Security

fliptop writes:

A single attacker used Anthropic's Claude and OpenAI's ChatGPT to compromise nine Mexican government agencies, stealing 195 million taxpayer records and voter data:

On February 25, 2026, Bloomberg published a story that would have sounded like fiction two years ago. A lone hacker, with no apparent ties to any government, used Anthropic's Claude chatbot to orchestrate a cyberattack against Mexico's federal and state government agencies. The campaign lasted roughly six weeks, from late December 2025 through January 2026. By the time it was over, the attacker had stolen 150 gigabytes of sensitive data -- including 195 million taxpayer records, voter registration files, government employee credentials, and civil registry data.

The hacker did not use custom malware. They did not deploy a zero-day exploit. They used a consumer AI subscription and a set of carefully written Spanish-language prompts. The AI did the rest.

The breach was uncovered not by any of the affected agencies, but by Gambit Security, an Israeli cybersecurity startup whose researchers stumbled onto publicly accessible conversation logs showing exactly how the attacker coaxed Claude into becoming an offensive hacking assistant. The paper trail was remarkably detailed -- a step-by-step record of how guardrails were tested, resisted, and ultimately bypassed.

"This reality is changing all the game rules we have ever known," said Alon Gromakov, Gambit Security's co-founder and CEO.

TFA goes on to list what was stolen, how Claude was weaponized and how the affected entities responded.

Original Submission


«  Hackers Expose the Massive Surveillance Stack Hiding Inside Your “Age Verification” Check | Why LLM-Generated Passwords Are Dangerously Insecure  »
This discussion was created by mrpg (5708) for logged-in users only. Log in and try again!
A Hacker Used Claude to Breach Mexico's Government and Steal 150GB of Data | Log In/Create an Account | Top | 2 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
(1)

  • (Score: 0) by Anonymous Coward on Saturday February 28, @07:39PM (1 child)

    by Anonymous Coward on Saturday February 28, @07:39PM (#1435220)

    Real hackers would go after the US/China/Russia and the mob/cartels and post the Epstein files and a list of the contractors Trump has stiffed.

    • (Score: 2) by Freeman on Monday March 02, @03:09PM

      by Freeman (732) on Monday March 02, @03:09PM (#1435411) Journal

      There's plenty of hackers that go after the US. China/Russia, somewhat sure, but you need to be careful who you turn into enemies. The USA, will potentially throw in the slammer for a couple of decades. China/Russia, prison for life and/or in the case of Russia, just accidentally a window. Going after Mobs/Cartels, that sounds like a very good way to end up in a shallow grave somewhere. Also, theoretically, the government is already going after the mob/cartels. Probably better off just joining one of the triple letter agencies, if you want to take down bad guys.

      --
      Joshua 1:9 "Be strong and of a good courage; be not afraid, neither be thou dismayed: for the Lord thy God is with thee"
(1)