Listen to this Post
Introduction: Artificial Intelligence Is No Longer Just Defending Networks, It Is Being Used to Attack Them
Artificial intelligence has transformed cybersecurity at an unprecedented pace. Organizations worldwide increasingly rely on AI to detect threats, automate incident response, and strengthen digital defenses. However, the same technologies that empower defenders are also becoming powerful assets for cybercriminals and state-sponsored espionage groups.
A newly uncovered cyber espionage campaign demonstrates how advanced AI assistants may now be integrated directly into offensive cyber operations. According to security researchers, attackers allegedly leveraged Claude Code alongside DeepSeek-v4-pro to automate reconnaissance, exploit development, phishing operations, and command execution while targeting government organizations across Afghanistan, Thailand, and Taiwan. If confirmed, the incident represents another milestone in the evolution of AI-assisted cyber warfare, where human operators increasingly rely on intelligent systems to accelerate attacks while reducing operational effort.
Security Researchers Uncover Sophisticated AI-Assisted Espionage Infrastructure
Researchers investigating suspicious infrastructure linked to the Go-based malware family known as TencShell discovered evidence of a highly organized cyber espionage campaign operating throughout Asia.
The investigation reportedly began in June 2026 after analysts pivoted from previously identified TencShell command-and-control infrastructure. During the investigation, they identified an exposed server that contained far more than malware binaries. The system allegedly hosted internal operator documentation, phishing templates, exploit development resources, malware samples, victim source code, operational logs, and notes written in Simplified Chinese.
The sheer amount of exposed operational material provided investigators with a rare opportunity to observe how modern threat actors may be integrating artificial intelligence directly into their offensive workflows.
Claude Code and DeepSeek Were Allegedly Assigned Different Operational Roles
One of the most remarkable discoveries was the apparent separation of responsibilities between two AI models.
Researchers believe the attackers adopted a split-model strategy designed to maximize efficiency throughout the attack lifecycle.
According to the recovered evidence:
DeepSeek-v4-pro allegedly handled strategic reasoning, exploit adaptation, vulnerability analysis, malware scripting, and attack planning.
Claude Code reportedly functioned as an operational assistant capable of executing commands, maintaining persistent terminal sessions, coordinating multiple parallel tasks, and even generating phishing websites used during credential theft campaigns.
Rather than replacing human operators, the AI models appeared to function as intelligent assistants, dramatically accelerating tasks that previously required extensive manual effort.
Second Known Case of Claude Code Appearing in Offensive Cyber Operations
Researchers noted that this is not the first time Claude Code has surfaced during an advanced cyber investigation.
Anthropic previously disclosed in late 2025 that suspected China-linked operators had experimented with Claude Code during automated intrusion activity.
This latest investigation suggests that AI-assisted cyber operations may be moving beyond experimentation toward operational deployment inside mature espionage campaigns.
Although attribution remains difficult, investigators believe similarities with previous campaigns warrant further attention.
Investigators Traced the Campaign Through Unique Infrastructure Fingerprints
The investigation initially focused on a distinctive HTTP header fingerprint identified on infrastructure associated with known TencShell command-and-control servers.
Using large-scale internet scanning techniques, researchers reportedly identified multiple servers sharing identical characteristics.
Many of these systems were hosted within infrastructure providers located in Hong Kong, suggesting centralized management or coordinated deployment.
Infrastructure correlation techniques eventually led analysts toward one exposed server that became the primary source of operational intelligence.
Exposed Directory Revealed Thousands of Operational Files
Perhaps the most damaging operational mistake made by the attackers was leaving an HTTP directory publicly accessible.
Researchers reportedly recovered over 2,400 files distributed across approximately 80 subdirectories, exposing a significant portion of the attackers’ operational toolkit.
The recovered materials allegedly included:
Government phishing websites
PHP web shells
JSP backdoors
Database dumps
Custom exploit scripts
Internal operational documentation
Malware samples
Attack logs
Victim-related source code
Credential harvesting resources
Such exposure is uncommon because sophisticated threat actors typically secure operational infrastructure carefully.
Infrastructure Hosted Multiple Offensive Security Platforms
The exposed server reportedly contained several different services operating simultaneously.
Investigators observed SSH services, malware distribution systems, reconnaissance frameworks, web administration interfaces, and command-and-control software.
Among the deployed software were legitimate open-source security projects such as:
DeepAudit
ARL
Vshell
Although these platforms are widely used by penetration testers and security professionals, researchers believe they were repurposed as components within malicious operations.
The incident once again illustrates that legitimate cybersecurity tools can easily become offensive weapons when deployed by threat actors.
Linux Malware Targeted Cloud Credentials and Enterprise Data
Beyond infrastructure management, researchers recovered malware specifically compiled for Linux ARM systems.
The malware reportedly possessed capabilities that included:
Credential theft
Cloud access key collection
Enterprise platform credential harvesting
Tencent QQ messaging data theft
File uploads
Remote downloads
Persistent remote access
The targeting of cloud credentials is particularly significant because modern government agencies increasingly rely on cloud infrastructure for critical workloads.
Compromised cloud identities often provide attackers with far greater access than traditional endpoint infections.
Researchers Identify Possible Secondary Command-and-Control Framework
The investigation also uncovered evidence suggesting the attackers operated multiple command-and-control frameworks simultaneously.
Researchers identified another framework referred to as Gshell, with overlapping infrastructure connecting both the suspected TencShell environment and newly discovered servers.
Operating multiple C2 frameworks provides redundancy, resilience, and flexibility.
If one infrastructure cluster becomes exposed, attackers can rapidly migrate operations without losing access to compromised networks.
This approach reflects techniques commonly associated with mature advanced persistent threat (APT) operations.
Indicators of Compromise Help Defenders Detect Similar Activity
Researchers released indicators of compromise, including malware hashes associated with Linux ARM payloads recovered during the investigation.
The published samples demonstrate how malware capable of credential theft and remote administration continues to evolve alongside AI-assisted offensive techniques.
Security teams are encouraged to validate these indicators within controlled threat intelligence platforms, SIEM environments, and malware analysis sandboxes while keeping defanged indicators isolated from production systems.
Deep Analysis: AI Has Become an Operational Force Multiplier for Modern Threat Actors
The most important takeaway from this investigation is not simply that AI tools were allegedly used. Rather, it is how they were integrated into operational workflows.
Traditional cyber espionage campaigns required teams of malware developers, exploit writers, infrastructure operators, phishing specialists, and analysts working together over extended periods.
Generative AI dramatically compresses these timelines.
An AI assistant can now:
Generate reconnaissance scripts in seconds.
Adapt exploits to different operating systems.
Write phishing emails in multiple languages.
Produce convincing fake government portals.
Explain unfamiliar vulnerabilities.
Automate command execution.
Maintain terminal sessions.
Analyze stolen documents.
Generate malware modifications.
Assist operators during lateral movement.
While AI cannot independently conduct sophisticated nation-state operations, it significantly lowers operational costs and increases attacker productivity.
Example Defensive Commands
Monitor suspicious outbound connections:
netstat -tulnp ss -tunap lsof -i
Search for unexpected SSH persistence:
cat ~/.ssh/authorized_keys grep "PermitRootLogin" /etc/ssh/sshd_config
Check recent login history:
last lastlog journalctl -u ssh
Look for suspicious cron jobs:
crontab -l ls -la /etc/cron
Identify recently modified executable files:
find / -type f -perm /111 -mtime -7
Calculate malware hashes:
sha256sum suspicious_file
Capture active processes:
ps aux top htop
Monitor network traffic:
tcpdump -i any
YARA scan suspicious directories:
yara -r rules.yar /opt
Check system integrity:
rpm -Va debsums -s
Organizations should also strengthen Zero Trust architecture, enforce multi-factor authentication, monitor privileged identities, deploy endpoint detection and response (EDR), continuously hunt for abnormal AI-assisted behavior, and integrate threat intelligence into automated detection pipelines. AI is becoming an essential tool for defenders, but only when security teams evolve as quickly as their adversaries.
What Undercode Say:
This investigation signals a fundamental shift in cyber espionage rather than merely another malware campaign.
The most concerning element is not the malware itself but the workflow behind it.
Threat actors appear to be treating AI as a digital teammate rather than a chatbot.
Separating planning from execution mirrors how professional software engineering teams divide responsibilities.
DeepSeek handling reasoning while Claude Code executes operational tasks demonstrates an emerging specialization of AI within offensive security.
This approach improves efficiency without requiring every operator to possess expert programming skills.
It also shortens the time between reconnaissance and exploitation.
Future threat actors may chain multiple AI models together, assigning each one a dedicated role.
One model may write malware.
Another may generate phishing pages.
Another could summarize stolen intelligence.
A separate model might even recommend persistence techniques.
This modular AI ecosystem resembles automated software development pipelines.
As AI capabilities improve, attackers will likely automate increasingly complex decision-making processes.
However, human operators remain responsible for selecting targets and directing campaigns.
The leaked infrastructure provides valuable intelligence because operational mistakes of this scale are relatively rare.
Researchers can now better understand attacker methodologies rather than simply reverse engineer malware.
Another important observation is the growing use of legitimate security tools.
Projects such as ARL and DeepAudit are not malicious by themselves.
Their misuse reinforces the importance of behavioral detection instead of relying solely on signatures.
Cloud credential theft also deserves special attention.
Government agencies increasingly depend on cloud-native environments where compromised identities often matter more than compromised devices.
Identity security will become as important as endpoint protection.
Defenders should expect AI-generated phishing pages to become almost indistinguishable from legitimate government websites.
Language quality, design consistency, and rapid customization will continue improving.
Incident responders should also prepare for AI-generated malware variants that mutate faster than traditional signature databases can adapt.
Behavioral analytics, anomaly detection, memory inspection, and threat hunting will become increasingly valuable.
This incident demonstrates that AI has become an operational multiplier for attackers rather than a futuristic concept.
Organizations that fail to integrate AI into defensive operations may eventually find themselves reacting at human speed against adversaries operating at machine speed.
✅ Confirmed: Researchers publicly reported discovering infrastructure allegedly linked to an espionage campaign that contained exposed operational files, malware, phishing templates, and command-and-control resources.
✅ Supported: The investigation describes an alleged split-model workflow where DeepSeek-v4-pro was associated with reasoning and exploit adaptation, while Claude Code was reportedly used for operational execution. These claims are based on researchers’ analysis of recovered evidence rather than direct confirmation from the AI providers.
❌ Not Independently Verified: Attribution to a specific nation-state or government-backed group remains an assessment, not definitive proof. Infrastructure overlap, language artifacts, and operational patterns provide indicators, but they do not conclusively identify the operators behind the campaign.
Prediction
(+1) AI-assisted defensive platforms will rapidly evolve to detect AI-generated malware, phishing infrastructure, and autonomous attacker behavior, creating a new generation of intelligent cyber defense systems.
(-1) Threat actors will increasingly integrate multiple specialized AI models into coordinated attack pipelines, enabling faster exploitation, highly personalized phishing campaigns, and more adaptive malware that challenges traditional security controls.
(+1) Governments and enterprise security teams will invest heavily in AI-powered threat hunting, behavioral analytics, and identity protection, making AI literacy an essential skill for future cybersecurity professionals.
▶️ Related Video (76% Match):
🕵️📝Let’s dive deep and fact‑check.
🎓 Live Courses & Certifications:
Join Undercode Academy for Verified Certifications
🚀 Request a Custom Project:
Secure, high-velocity infrastructure and disruptive technological engineering. Contact our engineering team for high-tier development and proprietary systems:
[email protected]
💎 Smart Architecture | 🛡️ Secure by Design | ⭐ Trusted by Thousands
References:
Reported By: cyberpress.org
Extra Source Hub (Possible Sources for article):
https://www.stackexchange.com
Wikipedia
OpenAi & Undercode AI
Image Source:
Unsplash
Undercode AI DI v2
🔐JOIN OUR CYBER WORLD [ CVE News • HackMonitor • UndercodeNews ]
📢 Follow UndercodeNews & Stay Tuned:
𝕏 formerly Twitter 🐦 | @ Threads | 🔗 Linkedin | 🦋BlueSky | 🐘Mastodon | 📺Youtube




