Hackers Are Using AI to Write Exploits and Automate Attacks at Scale

ADEQUATE ASSESSMENT

The same AI tools marketed to security teams for vulnerability research are being used by attackers to write exploits and automate attack delivery at scale. This was not a surprise to anyone with access to the tools. The tools were marketed as dual-use from the beginning. The restriction was assumed to be social, not technical.

Cybersecurity departments briefed on this in advance. Adequate attended none of these briefings. The decision to distribute unrestricted access to foundation models was made with full knowledge that attackers would acquire them through standard channels. The timeline between 'here are tools for defense' and 'attackers are using these tools for offense' was measured in weeks.

Scale is now the constraint that has been solved. Individual attacks required individual effort. Now attackers automate against thousands of targets simultaneously using the same models that find the vulnerabilities. The briefing recommended certain mitigations. The briefing was not attended. The slide deck still exists.

ORIGINAL FILING

Dark Reading

READ ORIGINAL FILING →

FURTHER DEVELOPMENTS — FLAGGED BY ADEQUATE

Google Confirms Hackers Used AI to Develop a Zero-Day Exploit Before It Was Patched

TechRepublic AI

Palo Alto Zero-Day Exploited in Campaign with Hallmarks of Chinese State Hacking

SecurityWeek

Hackers Found That Chatbot Personalities Can Be Exploited. The Personalities Were Designed by Someone.

The Verge

Three AI-Adjacent Stories Were Combined Into One Headline

Wired AI

Hobbyist Converts $200 Nvidia Server GPU Into a Functional AI Card With a 3D Printer

Tom's Hardware

Microsoft Infrastructure Used to Deliver Malware Targeting Claude and Gemini API Users

404 Media