Home / News

Advanced AI Is Reshaping the Cybercriminal Landscape at Alarming Speed

By CircleID Reporter
  • August 29, 2025, 9:10 am PDT
  • Views: 12,734
  • Add Comment
No-code malware: selling AI-generated ransomware-as-a-service

A new report has shed light on how advanced artificial intelligence is reshaping the cybercriminal landscape. The latest threat intelligence assessment by Anthropic details how its AI model, Claude, was misused in a string of global cyberattacks that mark a sharp escalation in both scale and sophistication.

The most alarming case, termed “vibe hacking,” involved an actor using Claude’s coding assistant, Claude Code, to carry out a multi-target extortion campaign. The AI agent automated everything from scanning networks and stealing credentials to generating personalised ransom notes. Victims ranged from hospitals to government agencies, with some ransom demands exceeding $500,000.

AI impersonation: Elsewhere, North Korean operatives have turned to Claude to pass as qualified remote software engineers, securing jobs at Western tech firms and diverting income to the regime’s weapons programmes. These workers, often unskilled, relied almost entirely on AI to write code, prepare for interviews, and communicate professionally.

In another case, a UK-based criminal used Claude to develop ransomware tools for sale on the dark web, offering professional-grade malware to buyers for as little as $400. Chinese and Russian threat actors were also found integrating Claude across nearly all stages of cyber operations, from reconnaissance to data exfiltration.

Anthropic warns that AI has lowered the barrier to high-impact cybercrime, making traditional measures of “sophistication” increasingly irrelevant.

NORDVPN DISCOUNT - CircleID x NordVPN
Get NordVPN  [74% +3 extra months, from $2.99/month]
By CircleID Reporter

CircleID’s internal staff reporting on news tips and developing stories. Do you have information the professional Internet community should be aware of? Contact us.

 Visit Page

Filed Under

Comments

Comment Title:

  Notify me of follow-up comments

We encourage you to post comments and engage in discussions that advance this post through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can report it using the link at the end of each comment. Views expressed in the comments do not represent those of CircleID. For more information on our comment policy, see Codes of Conduct.

CircleID Newsletter The Weekly Wrap

More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

Related

Topics

DNS Security

Sponsored byWhoisXML API

Brand Protection

Sponsored byCSC

Domain Names

Sponsored byVerisign

New TLDs

Sponsored byRadix

IPv4 Markets

Sponsored byIPv4.Global

Cybersecurity

Sponsored byVerisign

DNS

Sponsored byDNIB.com

View All Topics