---
type: "Evidence Item"
title: "Detecting and preventing distillation attacks"
description: "We have identified industrial-scale campaigns by three AI laboratories—DeepSeek, Moonshot, and MiniMax—to illicitly extract Claude’s capabilities to improve their own models."
resource: "https://www.anthropic.com/news/detecting-and-preventing-distillation-attacks"
tags: ["appendix-iii", "vendor", "anthropic"]
timestamp: "2026-02-23"
category: "vendor"
publisher: "Anthropic"
cope_score: 46
confidence: 0.88
---

# Detecting and preventing distillation attacks

# Claim

We have identified industrial-scale campaigns by three AI laboratories—DeepSeek, Moonshot, and MiniMax—to illicitly extract Claude’s capabilities to improve their own models. These labs generated over 16 million exchanges with Claude through approximately 24,000 fraudulent accounts, in violation of our terms of service and regional access restrictions.

# Relevance

Appendix III, section two: vendor threshold and platform capability evidence

# Oracle Verdict

This is a low-signal vendor radar item. Keep it as context only unless a later benchmark, deployment, procurement change, or labour-market datapoint turns it into direct Appendix III evidence.

# Metadata

* Publisher: Anthropic
* Category: vendor
* Sector: Cybersecurity
* Capability: Cyber defence and misuse monitoring
* Cope score: 46
* Confidence: 0.88

# Related Concepts

* [Live evidence index](index.md)
* [Thesis](../thesis.md)

# Citations

[1] [Detecting and preventing distillation attacks](https://www.anthropic.com/news/detecting-and-preventing-distillation-attacks)