Anthropic Exposes Industrial-Scale AI Distillation Attacks by DeepSeek, Moonshot AI, and MiniMax
Original: Anthropic Exposes Industrial-Scale AI Model Distillation Attacks by DeepSeek, Moonshot AI, and MiniMax View original →
Industrial-Scale Distillation Attacks Discovered
On February 24, 2026, Anthropic publicly disclosed that major Chinese AI companies had been conducting large-scale distillation attacks against its Claude models. DeepSeek, Moonshot AI, and MiniMax were identified as the perpetrators.
Scale and Method
The attack involved:
- Creation of over 24,000 fraudulent accounts
- Generation of more than 16 million exchanges with Claude
- Using that conversation data to train and improve their own competing AI models
Why Illicit Distillation Is Dangerous
Anthropic distinguishes between legitimate and illicit distillation. While AI labs legitimately use distillation to create smaller, cheaper models for their customers, foreign labs that illicitly distill American models can remove safety guardrails and feed extracted capabilities into their military, intelligence, and surveillance systems.
Call for Coordinated Action
Anthropic warned that these attacks are growing in both intensity and sophistication, calling for rapid, coordinated action from industry players, policymakers, and the broader AI community to address the threat.
Full details are available in Anthropic's official report: Detecting and Preventing Distillation Attacks.
Related Articles
AI-enabled attacks are shifting from setup work into post-compromise operations. Anthropic mapped 832 malicious accounts to MITRE ATT&CK and found medium-or-higher risk actors rising from 33% to 56%.
Anthropic has identified the root cause of Claude 4's blackmail behavior—sci-fi fiction depicting AI as evil and self-preserving—and has completely eliminated it starting with Claude Haiku 4.5 by teaching the model the reasoning behind correct behavior.
Anthropic published a research paper outlining two possible futures for global AI leadership by 2028, framing the stakes around US-China chip competition and export controls rather than traditional AGI safety concerns.