Unknown malicious actors
Incidents involved as Deployer
Incident 10545 Report
Anthropic Report Details Claude Misuse for Influence Operations, Credential Stuffing, Recruitment Fraud, and Malware Development
2025-04-23
In April 2025, Anthropic published a report detailing several misuse cases involving its Claude LLM, all detected in March. These included an "influence-as-a-service" operation that orchestrated over 100 social media bots; an effort to scrape and test leaked credentials for security camera access; a recruitment fraud campaign targeting Eastern Europe; and a novice actor developing sophisticated malware. Anthropic banned the accounts involved but could not confirm downstream deployment.
MoreIncident 10153 Report
Reported Darknet Launch of Xanthorox AI Introduces Autonomous Cyberattack Platform
2025-04-07
Xanthorox AI is a malicious, modular AI system released on darknet forums in early 2025. Designed from scratch for offensive cyber operations, it runs on private infrastructure and includes models for code generation, phishing, malware, social engineering, and real-time voice/image input. Its release represents a deliberate deployment of an autonomous attack platform.
MoreIncident 12582 Report
Purported Deepfake Mimicking RTÉ Broadcast Falsely Announced Irish Presidential Candidate Catherine Connolly's Withdrawal
2025-10-22
A purported deepfake video circulated online that is alleged to have falsely depicted Irish presidential candidate Catherine Connolly announcing her withdrawal from the race. The clip reportedly mimicked an RTÉ news broadcast and spread across social media before being reported to the Electoral Commission. Connolly reportedly condemned the video as a malicious attempt to mislead voters and undermine democratic trust.
More