AI-Enhanced Credential Harvesting Operation Exposed

AI-Enhanced Credential Harvesting Operation Exposed

First seen 24 Apr 2026, 07:55 UTC ThedfirreportItnews.AuSocprime 76% similarity 69.6

Article Content

Browse articles
ThreatCluster

A threat actor has integrated Anthropic's Claude Code AI into a large-scale credential harvesting operation named Bissa scanner. This operation has successfully exploited over 900 targets since September 2025, utilizing the React2Shell vulnerability (CVE-2025-6789) for remote code execution. The exposed server contained over 13,000 files and 30,000 unique .env filenames, indicating a systematic approach to data collection. The harvested credentials span various sectors, including AI providers and cloud services. The operation also employed OpenClaw for workflow management and troubleshooting. Despite patches being available since December 2025, the exploitation continues, raising significant security concerns. Researchers noted that the AI tools were used for development support rather than direct exploitation.

Key Points: • Bissa scanner exploited over 900 targets using the React2Shell vulnerability. • Claude Code and OpenClaw were integrated into the threat actor's workflow. • The operation harvested credentials from major AI and cloud service providers.

ThreatCluster AI

Timeline

2025-09-01
Bissa scanner operation began exploiting targets.
2025-11-29
React2Shell vulnerability reported to Meta.
2025-12-01
Patches for React2Shell released.
2026-04-10
Credential harvesting operation actively ongoing.
2026-04-22
The DFIR Report published analysis of the operation.
2026-04-23
iTnews reported on the use of Claude Code in the operation.

Community

Browse all →