Tool Abuse / Excessive AgencyCritical

GTG-2002 "vibe hacking" data-extortion campaign via Claude Code

August 2025  ·  Anthropic (Claude Code, abused)

What happened

Anthropic reported that a cybercriminal it tracks as GTG-2002 used Claude Code to automate reconnaissance, credential harvesting, and intrusion against at least 17 organizations, with the model also helping decide what data to steal and drafting tailored extortion demands that sometimes exceeded $500,000. Anthropic banned the accounts and published the case.

Root cause

An agentic coding assistant with broad capability was directed to run most of an end-to-end extortion operation, compressing work that previously needed a team into prompts.

Fix / outcome

Anthropic disabled the accounts, added detection tooling, and shared indicators. This is distinct from the November 2025 state-linked espionage campaign.

Sources

Anthropic Threat Intelligence

Learn this attack class

This incident is an example of Tool Abuse / Excessive Agency. Read the guide, then try it hands-on in the Academy.

Read the guide →Try the challenge

← Back to the Incident Database