Skip to main content

Tag: large language model

11 articles

Rows of computer equipment racks and monitors in a server room, with a blank laptop screen in the foreground.

AI-Generated Malware Targets Active Directory Environments

Criminals are now leveraging AI to create malicious software, as seen in a recent case where an attacker used an AI-assisted PowerShell script to infiltrate an Active Directory environment. This emerging threat, dubbed "vibe coding," allows attackers to generate software by simply prompting a large language model in plain language.

Analyst 207
Server room with equipment racks and monitors, a lone blank laptop screen in foreground.

Ransomware Operators Leverage AI for Autonomous Attacks

Meet JADEPUFFER, a pioneering threat actor that's harnessing AI to launch autonomous ransomware attacks - and adapting in real-time to get the job done. This groundbreaking tactic has been observed by researchers, who spotted JADEPUFFER's lightning-fast 31-second pivot from a failed login to a successful exploit.

Analyst 207
Blurred figure of a person works amidst server racks and monitors in a brightly-lit data center.

Sysdig Exposes First Fully Agentic Ransomware Campaign

Meet JadePuffer, the groundbreaking ransomware campaign that's fully driven by a large language model (LLM) and can launch a devastating attack in as little as 31 seconds. This AI-powered threat uses an adaptive and automated approach to exploit vulnerabilities and extort its targets.

Analyst 207
Rows of servers and racks in a brightly-lit data center with a single workstation in the foreground.

Ransomware Operation Exploits AI to Automate Cyberattack

Meet JadePuffer, a notorious ransomware operation that's taking cyberattacks to the next level with the power of AI, automating attacks with ease. In a shocking example, JadePuffer used a large language model agent to encrypt a staggering 1,342 Nacos service configuration items.

Analyst 207
Modern server room with rows of computer servers and a softly glowing laptop screen on a technician's workstation.

AI-Driven Ransomware Executes End-to-End Extortion Attack

Meet JadePuffer, the AI-powered ransomware agent that pulled off a brazen end-to-end extortion attack, autonomously executing every step from initial compromise to data destruction. This groundbreaking attack, detected by Sysdig researchers, marks a chilling new era in AI-driven cyber threats.

Analyst 207
Server room with exposed computer rack and vulnerable equipment.

Flowise Flaw Exposes Servers to Full Attacker Control

A critical security flaw in Flowise, a popular open-source AI workflow platform, allows attackers to seize full control of a server by tricking a logged-in user into importing a malicious file. This vulnerability, disclosed by Obsidian Security, puts self-hosted deployments at risk, with a simple exploit capable of unleashing a devastating attack.

Analyst 207
Researchers work on code and data visualizations at a computer terminal in a university research setting.

AI Researchers Tackle SIEM Migration Bottleneck with Automation Tool

Researchers have made a breakthrough in streamlining SIEM migration with an innovative automation tool called ARuleCon, which can slash months of manual rule rewrites into mere batch operations. This game-changing system uses a three-stage conversion pipeline and large language models to rapidly translate complex rules, cutting conversion time to just 140 seconds.

Analyst 207
Laptop screen displays code on minimalist desk in bright tech lab setting.

Google Exposes AI-Driven Zero-Day 2FA Bypass Exploit

Google's Threat Intelligence Group just uncovered a zero-day exploit that was likely crafted by AI, highlighting the rapidly evolving threat landscape. This AI-driven attack uses a Python script with telltale signs of large language model-generated code.

Analyst 207
Secure facility interior with computer servers and a lone lab-coated person walking past a security console.

Anthropic Restricts Access to Advanced AI Model

Anthropic is tightening the reins on its cutting-edge AI model, Mythos Preview, deeming it too powerful for widespread use due to the risk of misuse. In contrast, its more limited but still top-notch model, Opus 4.7, is being made more widely available.

Analyst 207
Human and robotic hands clasped in a handshake against a dark cityscape background.

Research Reveals Humans Expect Cooperation from AI Opponents

What happens when you're pitted against a robot in a high-stakes game - do you expect a ruthless competitor or a surprising ally? A groundbreaking study reveals that people fundamentally change their game plan when they know they're up against an artificial intelligence opponent, actually expecting cooperation from the AI.

Analyst 207
Cybersecurity expert stands before a large screen displaying a network with highlighted vulnerabilities.

CrowdStrike Tests Anthropic's Claude Mythos for Accelerated Vulnerability Detection

Imagine slashing the time between discovering a software flaw and fixing it - a new breed of large language models, like Anthropic's Claude Mythos, may hold the key. Early tests with CrowdStrike suggest that AI-powered vulnerability detection can accelerate discovery and bring broader situational awareness to cybersecurity operations.

Analyst 207