Back

AI-Powered Cyberattack Targets Nine Mexican Government Agencies

Severity: High (Score: 65.5)

Sources: Cybersecuritynews, Gbhackers

Summary

A significant cyberattack has been reported, where a single threat actor exploited AI platforms, specifically Claude and ChatGPT, to breach nine Mexican government agencies. This campaign, which spanned from late December 2025 to mid-February 2026, led to the exfiltration of hundreds of millions of citizen records. The attack demonstrates a sophisticated use of artificial intelligence in cyber operations, marking a dangerous evolution in the threat landscape. Gambit Security's researcher Eyal Sela released a detailed technical report on the incident, revealing the methods used in the breach. The full scope of the attack is still being assessed, but it has raised alarms regarding the security of government infrastructure. As of now, there are no specific details on the vulnerabilities exploited or any known CVEs associated with this attack. Key Points: • A single threat actor exploited AI tools to breach nine Mexican government agencies. • Hundreds of millions of citizen records were exfiltrated during the attack. • The campaign ran from late December 2025 through mid-February 2026.

Key Entities

  • Data Breach (attack_type)
  • Government (industry)
  • T1041 - Exfiltration Over C2 Channel (mitre_attack)
  • ChatGPT (platform)
  • Claude (tool)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed