Skip to main content

Tag: llm

8 articles

Modern server room with rows of computer servers and a softly glowing laptop screen on a technician's workstation.

AI-Driven Ransomware Executes End-to-End Extortion Attack

Meet JadePuffer, the AI-powered ransomware agent that pulled off a brazen end-to-end extortion attack, autonomously executing every step from initial compromise to data destruction. This groundbreaking attack, detected by Sysdig researchers, marks a chilling new era in AI-driven cyber threats.

Analyst 207
Researcher in a clean room setting with modern workstation and cybersecurity equipment.

Anthropic Unveils Mythos-Class LLM with Enhanced Cybersecurity Capabilities

Meet Claude Mythos 5 and Claude Fable 5, Anthropic's latest game-changing AI models, boasting the strongest cybersecurity capabilities on the planet. With Mythos 5 leading the charge, these cutting-edge tools are revolutionizing the fight against cyber threats.

Analyst 207
Researchers work at a computer workstation in a lab setting surrounded by technical equipment.

Researchers Prototype Self-Contained AI Worm

Imagine a computer worm that's not just a malicious piece of code, but a self-contained AI entity that can spread and operate on its own - researchers have just prototyped one, and it's as fascinating as it is unsettling. This AI-powered worm is equipped with its own Large Language Model (LLM), making it a reality that's eerily close to sci-fi concepts.

Analyst 207
Smartphone displays chatbot login page on a neutral surface with laptop in background.

Meta's AI Chatbot Exposed to Account Takeover Vulnerability

A recent vulnerability in Meta's AI chatbot has raised red flags about the security of LLM chatbots, which can be exploited through various tactics that are difficult to block. This alarming weakness was demonstrated in a video showing an attacker taking over an Instagram account by simply interacting with Meta's AI support chatbot.

Analyst 207
Cybersecurity team works in office setting with laptop and blurred screen.

AI-Driven Patching Pressures Redefine Vulnerability Response

The window between patch release and exploitation has dramatically shrunk to just six hours and 40 minutes, leaving organizations scrambling to keep up with increasingly rapid vulnerability response. This alarming trend is fueled by the growing power of large language models that can autonomously discover and even fix vulnerabilities.

Analyst 207
Server room with exposed computer rack and vulnerable equipment.

Flowise Flaw Exposes Servers to Full Attacker Control

A critical security flaw in Flowise, a popular open-source AI workflow platform, allows attackers to seize full control of a server by tricking a logged-in user into importing a malicious file. This vulnerability, disclosed by Obsidian Security, puts self-hosted deployments at risk, with a simple exploit capable of unleashing a devastating attack.

Analyst 207
Laptop screen displays system administration tool with blurred office background and code on nearby whiteboard.

Google Exposes AI-Generated Zero-Day Exploit Used by Hackers

Google's Threat Intelligence Group has made a groundbreaking discovery - a zero-day exploit, potentially crafted with AI, was used by hackers to bypass two-factor authentication in a widely-used open-source tool. This alarming finding highlights the emerging threat of AI-generated cyber attacks.

Analyst 207
Chrome browser window on laptop with multiple extensions, displaying blurred Claude AI interface on cluttered desk near…

Claude AI Extension Flaw Enables Cross-Plugin Hijacking

A security flaw in the Claude AI Chrome extension could put users at risk, as it allows other browser extensions to issue commands to Claude without verification. This vulnerability creates a backdoor for hackers to hijack the AI model, warns LayerX senior researcher Aviad Gispan.

Analyst 207