Google warns North Korea, Iran, and China are using AI to enhance cyberattacks

A new report from Google’s Threat Analysis Group (GTAG) has shown that state-backed hackers from North Korea, Iran, and China are actively experimenting and optimizing cyberattacks with artificial intelligence (AI) tools, which in this case was Google’s Gemini. 

Google said it had observed multiple state-affiliated groups using its large language models for reconnaissance, social engineering, malware development, and enhancing “all stages of their operations, from reconnaissance and phishing lure creation to command and control (C2) development and data exfiltration.”

The report found evidence of novel and sophisticated AI-enabled attacks. It warned that generative AI is lowering the technical barriers for malicious operations by helping attackers work faster and with greater precision.

The report builds on similar warnings from Microsoft and OpenAI, which disclosed comparable experimentation by the same trio of nation-backed actors.

Also, Anthropic, the company behind Claude AI, released a report on how it has been detecting and countering the use of AI for attacks, and North Korea-linked groups were the prominent bad actors that featured in the report.

North Korean state actors turn to AI

In its latest threat intelligence update, Google detailed how an Iranian group known as TEMP.Zagros, also known as MuddyWater, used Gemini to generate and debug malicious code disguised as academic research, with the end goal of developing custom malware.

In doing so, it inadvertently exposed key operational details that allowed Google to disrupt parts of its infrastructure.

China-linked actors were found using Gemini to improve phishing lures, perform reconnaissance on targeted networks, and research lateral movement techniques once inside compromised systems. In some cases, they misused Gemini to explore unfamiliar environments, such as cloud infrastructure, Kubernetes, and vSphere, indicating an effort to expand their technical reach.

North Korean operators, meanwhile, have been observed probing AI tools to enhance reconnaissance and phishing campaigns. One North Korean threat group known for its role in cryptocurrency theft campaigns leveraging social engineering also attempted to use Gemini to write code that would enable it to steal cryptocurrency.

Google was able to mitigate these attacks and close the accounts involved in them.

A new frontier for cyber defense

Anthropic’s report was released in August 2025 and provides supporting evidence of AI misuse by state-linked actors. The company found that North Korean operatives had used its Claude model to pose as remote software developers looking for jobs.

They reportedly used Claude to generate resumes, code samples, and answers to technical interviews to secure freelance contracts abroad.

While Anthropic’s findings brought to light the fraudulent action of using AI to get jobs, which would have led to a bigger hacking operation in the hiring organizations, it also agrees with Google’s conclusion that AI tools are being systematically tested for extra advantage by bad actors.

The findings are a new headache for the global cybersecurity community. The same features that make AI models and applications powerful productivity tools are also being used to make potent instruments of harm, as the reports have shown, and as more advances are made, so will these attackers adapt, and their attacks will get more sophisticated.

Governments and technology companies are beginning to respond, and continued collaboration between all stakeholders to mitigate these actions will be the way forward.

Want your project in front of crypto’s top minds? Feature it in our next industry report, where data meets impact.