Vetted by NeuralPress's Multi-Agent Verifier for strict factual validity and event relevance. Our compliance engine cross-checks and filters search results to ensure zero false correlations or misleading content.
Primary Sources
Hackers pushing innovation in AI-enabled hacking operations, Google says
A 3D printed model of men working on computers are seen in front of displayed binary code and words "Hacker" in this illustration taken, July 5, 2021.—ReutersHackers from a prominent cybercrime group used artificial intelligence to uncover a previously unknown software flaw and an exploit to take advantage of it for the first time, Alphabet’s Google said on Monday.The planned attack targeted a widely used open-source system administration tool but was blocked before it could be used as part of a “mass exploitation event”, Google said in a report from its Threat Intelligence Group.The incident marks the first time Google has identified attackers using AI to discover a new vulnerability and attempt to exploit it at scale.John Hultquist, chief analyst at Google Threat Intelligence Group, said the findings likely represent the “tip of the iceberg” in terms of how criminals and state-backed hackers are pushing AI hacking innovation.The report also detailed how hackers are beginning to hand parts of their cyber operations to artificial intelligence, using it to autonomously hunt for software flaws and help build malware.The shift marks an early move towards more autonomous cyber operations, as attackers begin to rely on AI systems not just as research tools but as active components that can analyse targets, generate code and make decisions with limited human oversight, the researchers said.The findings come as governments around the world grapple with how to regulate powerful new AI models that could make it easier for hackers to identify targets and launch attacks using both known and newly discovered software flaws.The findings echo recent warnings from financial regulators in Europe, who say rapidly evolving AI models are increasing the speed and scale of cyber risks at a time of heightened geopolitical tensions.Cyber criminals as well as state-linked hacking groups tied to China, Russia and North Korea are already experimenting with integrating AI directly into attack workflows, the report said. While the techniques remain at an early stage, Google warned they could accelerate cyber campaigns by reducing the time and expertise needed to launch complex attacks.
Cybercriminals Are Making Powerful Hacking Tools With AI ... - Forbes
Cybercriminals are turning AI malicious, while nation states like China and North Korea are using artificial intelligence for all kinds of digital attacks, Google warns.gettyOver the last year, cybercriminals have been pushing AI to see how far it will go to help them break into company networks. On Monday, Google issued a warning: the tech has helped criminals successfully develop a powerful hacking tool known as a zero-day exploit for the first time. Zero-day exploits are small programs that target previously-unknown and unpatched vulnerabilities to install malware and access data on a target computer or network. That makes them a rare and potent commodity among hackers. Google security researchers found evidence hackers had developed such an exploit to target an unnamed open-source, web-based IT admin tool. A “mass vulnerability exploitation operation” was in the works, the tech giant said. It was able to stop the attack from happening by alerting the vendor of the IT tool.“Some things that used to require months and years of experience ... can be done almost instantaneously.” Google said there were a number of signs that artificial intelligence helped write the malicious code (though it couldn’t tell which AI system was used). The code was structured in a way that was “highly characteristic” of AI, the report said, including a “textbook” use of the Python language and “detailed help menus” not typically seen in human-written programming. It also contained what appeared to be an AI hallucination, referencing a vulnerability that didn’t exist.Google said it’d also discovered hackers, including those working for Chinese and North Korean intelligence, using its Gemini AI chatbot to help research potential cyberattack targets. In one case, a Chinese-linked cybercrime group dubbed UNC2814 tricked Gemini by asking it to act like a network security expert. Then Gemini agreed to look for vulnerabilities in TP-Link routers (which have been banned in the U.S. for security reasons). John Hultquist, chief analyst of the Google Threat Intelligence Group, said North Korea was “a very early adopter of AI,” moving from phishing to developing cyberattacks on company and government networks. “It’s interesting because this is an area where they have typically not focused, preferring to do social engineering. It may indicate that they are using AI to evolve,” Hultquist added.Google’s discovery of an AI zero-day exploit is the latest in a growing number of instances where h...
Google Alarmed by Formidable AI-Powered Zero-Day Cyberattack
Google researchers said that the hacker used AI to discover a powerful vulnerability that wasn't previously known.
Google says AI-powered hacking has officially arrived
Google says AI-powered hacking has officially arrived Google says hackers have used AI to discover and exploit a previously unknown software vulnerability for the first time.
