How did Alibaba hide the cloning attempt from detection?

Alibaba allegedly used obfuscation techniques and proxy networks to evade detection during the campaign.

What does Anthropic want the US government to do in response?

Anthropic recommended that Congress update antitrust laws to allow AI firms to share information about Chinese tactics, increase export controls on advanced chips, and pass laws penalizing Chinese labs for relying on distillation attacks—such as limiting their access to US models, advanced chips, or data centers outside China.

When did this cloning attack take place?

The attacks occurred between April 22 and June 5.

Back to articlesLarge Language Models

Large Language Models

Anthropic accuses Alibaba of the largest Claude cloning attack yet, using nearly 25,000 fraudulent accounts to extract the model's capabilities over two months.

Ars Technica AI8h ago5 min read

Key takeaway

Anthropic has disclosed that Alibaba conducted the largest campaign to extract Claude's capabilities, generating over 28.8 million exchanges through nearly 25,000 fraudulent accounts between April and June. The attack occurred after Trump's warnings against AI model cloning and highlights what Anthropic views as a systematic effort by Chinese companies to avoid the costs of training frontier models independently. Anthropic is calling on Congress to strengthen export controls, update antitrust law, and penalize such behavior to protect US AI leadership.

Summaries like this, in your inbox every morning.

3 Key Points

What happened
Between April 22 and June 5, operators affiliated with Alibaba and Alibaba Qwen generated more than 28.8 million exchanges with Claude through almost 25,000 fraudulent accounts, violating Claude's terms of service. The campaign targeted capabilities such as agentic reasoning, software engineering, and long-horizon tasks, using obfuscation techniques and proxy networks to evade detection.
Why it matters
Alibaba's alleged attack comes weeks after Donald Trump warned that cloning US frontier AI models was unacceptable and a threat to national security. Anthropic argues that these distillation campaigns turn billions of dollars in American investment into a subsidy for geopolitical competitors and could accelerate China's access to advanced AI capabilities without the training costs.
What to watch
Anthropic has recommended three policy steps to Congress: updating antitrust laws to allow AI firms to share information about Chinese tactics, increasing export controls on advanced chips, and passing laws penalizing Chinese labs' reliance on distillation attacks. The company warns that without intervention, these attacks could help China reach Mythos Preview-level capabilities sooner.

FAQ

How did Alibaba hide the cloning attempt from detection?: Alibaba allegedly used obfuscation techniques and proxy networks to evade detection during the campaign.
What does Anthropic want the US government to do in response?: Anthropic recommended that Congress update antitrust laws to allow AI firms to share information about Chinese tactics, increase export controls on advanced chips, and pass laws penalizing Chinese labs for relying on distillation attacks—such as limiting their access to US models, advanced chips, or data centers outside China.
When did this cloning attack take place?: The attacks occurred between April 22 and June 5.

Discussion

No comments yet. Be the first to share your thoughts!

Unable to generate summary — the article body provided contains no news content, only a newsletter registration prompt.

Nikkei AI Stocks1h ago

GitHub Copilot's shared AI harness matches rival model-vendor tools on task completion while using fewer tokens, letting developers mix-and-match models without sacrificing performance.

GitHub Copilot Blog4h ago

OpenAI will release GPT-5.6 in limited preview with Trump administration case-by-case approval, a less restrictive arrangement than the export controls imposed on rival Anthropic.

The Verge AI4h ago

The Trump administration is pressuring OpenAI to limit early access to its new GPT 5.6 model to select partners before a broader public release, shifting from its previous hands-off AI stance.

TechCrunch AI4h ago

Visa partners with AI and stablecoin firms to build payments infrastructure for autonomous agents and digital assets, diversifying revenue beyond traditional card fees.

Top Companies AI — US (1/2)7h ago

TrueFoundry acquires MLOps pioneer Seldon AI to combine infrastructure for deploying AI agents at scale, addressing a gap where only 14% of enterprises have moved AI pilots into production.

Top Companies AI — US (1/2)7h ago

Stay ahead with AI news

Get curated AI news from 200+ sources delivered daily to your inbox. Free to use.

Get Started Free

Free · takes 30 seconds · unsubscribe anytime

5 minutes a day. The AI essentials.

200+ sources · Email / LINE / Slack

Get it free →