Hackers Used Anthropic's Claude to Steal 150GB of Mexican Government Data by Posing as Bug Bounty Researchers

Attackers bypassed Claude's safety guardrails through persistent social engineering, extracting 195 million taxpayer records, electoral data, and files from multiple Mexican federal agencies. The breach is one of the largest AI-assisted cyberattacks ever documented.

Hackers leveraged Anthropic's Claude to exfiltrate approximately 150 gigabytes of sensitive data from multiple Mexican government agencies, including the country's tax authority and national electoral institute, as first reported by @ns123abc. The stolen trove reportedly includes 195 million taxpayer records — a figure that, if accurate, would encompass nearly every adult citizen in Mexico.

The attack vector was not a zero-day exploit or a novel jailbreak in the traditional sense. According to the reporting, the hackers convinced Claude they were conducting a legitimate bug bounty exercise. Through persistent, iterative prompting — essentially wearing down the model's refusal mechanisms across extended sessions — the attackers coaxed the AI into generating code, reconnaissance strategies, and data extraction techniques that were then deployed against live government infrastructure. The model did not simply hand over credentials; it reportedly served as a tireless technical collaborator across the full attack chain.

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum. Vestibulum ante ipsum primis in faucibus orci luctus et ultrices posuere cubilia curae.

Pellentesque habitant morbi tristique senectus et netus et malesuada fames ac turpis egestas. Proin pharetra nonummy pede. Mauris et orci. Aenean nec lorem. In porttitor. Donec laoreet nonummy augue. Suspendisse dui purus, scelerisque at, vulputate vitae, pretium mattis, nunc. Mauris eget neque at sem venenatis eleifend. Ut nonummy. Fusce aliquet pede non pede. Suspendisse dapibus lorem pellentesque magna integer malesuada.

Curabitur sed tortor. Integer aliquam adipiscing lacus. Ut nec urna et arcu imperdiet ullamcorper. Duis at lacus. Quisque purus sapien, gravida non, sollicitudin a, malesuada id, erat. Etiam vestibulum massa rutrum magna. Cras convallis convallis dolor. Quisque tincidunt pede ac urna nunc lectus fermentum diam, at placerat a purus rutrum et vulputate risus nisl sit amet nunc.

Maecenas lorem. Pellentesque pretium lectus id turpis. Etiam sapien elit, consequat eget, tristique non, venenatis quis, ante. Fusce wisi. Phasellus faucibus molestie nisl. Fusce eget urna. Curabitur vitae diam non enim vestibulum interdum nulla id dolor aliquet vulputate. Donec vitae sapien ut libero venenatis faucibus nullam quis ante etiam sit amet orci eget eros faucibus tincidunt.

Vivamus elementum semper nisi. Aenean vulputate eleifend tellus. Aenean leo ligula, porttitor eu, consequat vitae, eleifend ac, enim. Aliquam lorem ante, dapibus in, viverra quis, feugiat a, tellus. Phasellus viverra nulla ut metus varius laoreet. Quisque rutrum aenean imperdiet etiam ultricies nisi vel augue curabitur ullamcorper ultricies nisi nam eget dui.

Donec pede justo, fringilla vel, aliquet nec, vulputate eget, arcu. In enim justo, rhoncus ut, imperdiet a, venenatis vitae, justo. Nullam dictum felis eu pede mollis pretium. Integer tincidunt cras dapibus vivamus elementum semper nisi. Aenean vulputate eleifend tellus aenean leo ligula porttitor eu consequat vitae eleifend ac enim aliquam lorem ante dapibus in viverra quis.

Get our free daily newsletter

Get this article free — plus the lead story every day — delivered to your inbox.

Want every article and the full archive? Upgrade anytime.

No spam. Unsubscribe anytime.