In this week's newsletter, Martin emphasizes that awareness, basic cyber hygiene and preparation are essential for everyone, and highlights Talos' discovery of the new PathWiper malware.

Thursday, June 5, 2025 14:00

Welcome to this week’s edition of the Threat Source newsletter. 

I’ve discovered that being a rent guarantor for someone is an involved experience. While I’m glad that I can help out a loved one secure a better rental property, the process of verifying my identity and ability to cover any missed payments required handing over far more personal and financial data than I was comfortable with. 

I asked the agent about their information security policies and cybersecurity posture. I was relieved to hear that they delete all the personal data within two weeks of processing, but I was concerned that the person dealing with my dossier didn’t think that they were at risk of a cyber attack. They believed that because they had a low online profile and their organisation was small, they didn’t present as a target. 

Not wanting to jeopardise my position as a guarantor, I didn’t argue further beyond offering a few words of advice. The truth is that everyone is a target. Many criminals do not discriminate; they seek to compromise anyone and see how they can make money from a compromise once access is achieved. Sophisticated criminals research their targets and their wider ecosystem of suppliers and partners in depth to identify potential weak points. It only takes a moment’s inattention for anyone to fall for a phishing or social engineering scam. 

Cybersecurity training needs to reinforce the fact that anyone can be a victim of a cyber attack. No matter how careful you might be, how insignificant you think that you might be, an attack can still catch you off guard. The good news is that by ensuring basic cyber hygiene, we can make a lot of progress towards preventing harm. 

Impressing on users the need to install updates promptly, the importance of having end-point protection and using multi-factor authentication is not a panacea, but it is a basic foundation upon which more advanced protection can be built. 

Good cybersecurity begins with an awareness of the threat, an acknowledgement that we are all at risk, and knowing the potential consequences. Nobody is too insignificant, too small or too well hidden to escape the risk of cyber attack. Suitable protection follows from reflecting on what is at risk and what could possibly go wrong.

**The one big thing **

Talos has uncovered a destructive attack on Ukrainian critical infrastructure involving a new wiper malware, "PathWiper," deployed through a legitimate endpoint administration framework. Talos attributes this attack to a Russia-linked APT actor, underscoring the persistent threat to Ukraine's infrastructure amid the ongoing war. 

**Why do I care? **

This attack highlights the sophisticated tactics of state-sponsored threat actors and the risks critical infrastructure entities face, which could have global implications for cybersecurity and geopolitical stability. 

**So now what? **

Organizations, particularly those managing critical infrastructure, should strengthen their endpoint security, monitor for unusual administrative activity, and stay informed on evolving threats to mitigate potential risks.

**Top security headlines of the week**

**New Chrome Zero-Day Actively Exploited; Google Issues Emergency Out-of-Band Patch**   
The high-severity flaw is being tracked as CVE-2025-5419 (CVSS score: 8.8), and has been flagged as an out-of-bounds read and write vulnerability in the V8 JavaScript and WebAssembly engine. (The Hacker News) 

**Vanta bug exposed customers’ data to other customers**   
Compliance company Vanta has confirmed that a bug exposed the private data of some of its customers to other Vanta customers. The company told TechCrunch that the data exposure was a result of a product code change and not caused by an intrusion. (TechCrunch) 

**Data Breach Affects 38K UChicago Medicine Patients**   
UChicago Medicine released a statement that the data of 38K patients may have been exposed by a third-party debt collector's system breach. The exposed data may include SSNs, addresses, dates of birth, medical information, and financial account information. (UPI)

**Can’t get enough Talos? **

**Fake AI installers target businesses.** Catch up on the ransomware and malware threats Talos discovered circulating in the wild and masquerading as legit AI tool installers. Read the blog or listen to our most recent Talos Takes to hear Hazel and Chetan, the author, discuss the blog more in-depth.

**Talos at Cisco Live 2025**. From sessions featuring a live IR tabletop session to learning how to outsmart identity attacks, there’s plenty of Talos to keep you going in San Diego next week. Browse sessions Talos is participating in, and we'll see you there!

**Upcoming events where you can find Talos **

*   Cisco Live U.S. (June 8 – 12) San Diego, CA 
*   REcon (June 27 – 29) Montreal, Canada 
*   NIRMA (July 28 – 30) St. Augustine, FL 
*   Black Hat USA (Aug. 2–  7) Las Vegas, NV

**Most prevalent malware files from Talos telemetry over the past week **

**SHA 256: a31f222fc283227f5e7988d1ad9c0aecd66d58bb7b4d8518ae23e110308dbf91**     
MD5: 7bdbd180c081fa63ca94f9c22c457376     
VirusTotal: https://www.virustotal.com/gui/file/a31f222fc283227f5e7988d1ad9c0aecd66d58bb7b4d8518ae23e110308dbf91/details    
Typical Filename: IMG001.exe    
Detection Name: Simple\_Custom\_Detection 

**SHA 256:**   
**9f1f11a708d393e0a4109ae189bc64f1f3e312653dcf317a2bd406f18ffcc507**   
MD5: 2915b3f8b703eb744fc54c81f4a9c67f   
VirusTotal: https://www.virustotal.com/gui/file/9f1f11a708d393e0a4109ae189bc64f1f3e312653dcf317a2bd406f18ffcc507   
Typical Filename: VID001.exe   
Detection Name: Simple\_Custom\_Detection 

**SHA 256: c67b03c0a91eaefffd2f2c79b5c26a2648b8d3c19a22cadf35453455ff08ead0**   
MD5: 8c69830a50fb85d8a794fa46643493b2    
Typical Filename: AAct.exe    
Claimed Product: N/A    
Detection Name: PUA.Win.Dropper.Generic::1201

Everyone's on the cyber target list

Cybersecurity researchers have flagged several popular Google Chrome extensions that have been found to transmit data in HTTP and hard-code secrets in their code, exposing users to privacy and security risks.

"Several widely used extensions [...] unintentionally transmit sensitive data over simple HTTP," Yuanjing Guo, a security researcher in the Symantec's Security Technology and Response

Popular Chrome Extensions Leak API Keys, User Data via HTTP and Hardcoded Credentials

Cybersecurity experts warn of widespread data exposure as a recent investigation reveals a staggering number of internet cookies…

Cybersecurity experts warn of widespread data exposure as a recent investigation reveals a staggering number of internet cookies circulating on the dark web.

A new report from NordVPN highlights the severe privacy risks associated with web cookies, which are small files websites store on your device to remember your browsing activity. The research, conducted in partnership with threat exposure management platform, NordStellar, uncovered approximately 93.7 billion stolen cookies available for sale in underground online marketplaces.

Researchers analyzed data from Telegram channels between April 23 and April 30, 2025, resulting in a dataset of around 94 billion cookies. The researchers analyzed the cookies’ active or inactive status, malware used, country of origin, data content, the company, the user’s OS, and keyword categories assigned to users. NordVPN did not buy stolen cookies or access their contents, but only examined the data within them.

****What’s Inside the Digital Cookie Jar?****

The analysis of these stolen cookies revealed a treasure trove of personal data. When analyzing these stolen cookies, ‘ID’ (Assigned ID was associated with 18 billion cookies) and ‘session’ (associated with 1.2 billion cookies) were identified as the most common keywords, indicating the type of data they held.

These are crucial for maintaining active user sessions on websites, meaning a stolen session ID could grant an attacker direct access to an account without needing a password. Alarmingly, out of the total 93.7 billion stolen cookies analysed, 15.6 billion were still active, posing an immediate threat to users.

This vast collection of compromised data poses a significant threat to personal security, potentially allowing malicious actors to access sensitive information and online accounts. Beyond session data, the report reveals that compromised cookies frequently contained personal details such as names, email addresses, countries, cities, and even passwords.

This information can be exploited for targeted phishing attacks or, in more severe cases, identity theft. Here’s a breakdown of the data attackers can steal via cookies.

Source: NordVPN

****Where Did These Cookies Come From?****

The majority of these stolen cookies were traced back to several major online platforms and originated from a diverse set of countries. Google services alone accounted for over 4.5 billion cookies, with YouTube and Microsoft each contributing more than 1 billion. This indicates that widely used platforms are prime targets for cybercriminals due to the sheer volume of user data they handle.

The primary method of theft involved various types of malware, including infostealers, trojans, and keyloggers. Redline emerged as the most prolific, responsible for stealing almost 42 billion cookies. Check out the list of malicious software used to steal these cookies:

Source: NordVPN

****Protecting Your Digital Crumbs****

Given the widespread threat, cybersecurity experts advise users to take proactive steps to safeguard their online presence.

> _“Cookies may seem harmless, but in the wrong hands, they’re digital keys to our most private information. What was designed to enhance convenience is now a growing vulnerability exploited by cybercriminals worldwide.”_
> 
> Adrianus Warmenhoven, Cybersecurity Expert – NordVPN

Therefore, to stay safe, always be careful when accepting cookies on websites, opting to reject unnecessary ones, especially third-party trackers. Also, regularly clear cookies from your browser to limit the window of opportunity for attackers.

Furthermore, using security tools like anti-malware software and Virtual Private Networks (VPNs) can significantly enhance protection. It helps block malicious websites, scan downloads for threats, and encrypt internet traffic, making it harder for cybercriminals to snatch your digital cookies.

Nearly 94 Billion Stolen Cookies Found on Dark Web

A group Google is tracking as UNC6040 has been tricking users into installing a malicious version of a Salesforce app to gain access to and steal data from the platform.

Vishing Crew Targets Salesforce Data

A group that Google is tracking as UNC6040 has been tricking users at many organizations into installing a malicious version of a Salesforce app to gain access and steal data from the platform.

Google has disclosed details of a financially motivated threat cluster that it said "specialises" in voice phishing (aka vishing) campaigns designed to breach organizations' Salesforce instances for large-scale data theft and subsequent extortion.
The tech giant's threat intelligence team is tracking the activity under the moniker UNC6040, which it said exhibits characteristics that align with

Google Exposes Vishing Group UNC6040 Targeting Salesforce with Fake Data Loader App

Google has released an important update for Chrome, patching one actively exploited zero-day and two other security flaws

Google has released an update for the Chrome browser to patch an actively exploited flaw.

The update brings the Stable channel to versions 137.0.7151.68/.69 for Windows and Mac and 137.0.7151.68 for Linux.

The easiest way to update Chrome is to allow it to update automatically, but you can end up lagging behind if you never close your browser or if something goes wrong—such as an extension stopping you from updating the browser.

To manually get the update, click the “**more menu**” (three stacked dots) **\>**  **Settings > About Chrome**. If there is an update available, Chrome will notify you and start downloading it. Then all you have to do is relaunch the browser in order for the update to complete, and for you to be safe from the vulnerability.

_The About Chrome menu while updating_

This update is crucial since it addresses an actively exploited vulnerability which could allow an attacker to exploit a specially crafted HTML page (website).

**Technical details**

The vulnerability tracked as CVE-2025-5419 is an out-of-bounds read and write in Google Chrome’s “V8,” which is the engine that Google developed for processing JavaScript. Prior to Google Chrome version 137.0.7151.68, this vulnerability allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

V8 has been a significant source of security problems in the past.

An out-of-bounds read and write vulnerability means that the attacker can manipulate parts of the device’s memory that should be out of their reach. Such a flaw in a program allows it to read or write outside the bounds the program sets, enabling attackers to manipulate other parts of the memory allocated to more critical functions. Attackers can write code to a part of the memory where the system executes it with permissions that the program and user should not have.

Google knows that attackers currently exploit CVE-2025-5419 in the wild, but released no details yet on who exploits the flaw, how they do it in real-world attacks, or who the targets are in those attacks. However, the Google Threat Analysis Group (TAG) team, which discovered the exploit, focuses on spyware and nation-state attackers who abuse zero days for espionage purposes.

This Chrome update also patches a medium-severity, use-after-free flaw (CVE-2025-5068) in the open-source rendering engine Blink and one internally discovered vulnerability.

**We don’t just report on** **browser vulnerabilities**. Malwarebytes’ Browser Guard protects your browser against malicious websites and credit card skimmers, blocks unwanted ads, and warns you about relevant data breaches and scams.

 Google fixes another actively exploited vulnerability in Chrome, so update now! 

Traditional data leakage prevention (DLP) tools aren't keeping pace with the realities of how modern businesses use SaaS applications.
Companies today rely heavily on SaaS platforms like Google Workspace, Salesforce, Slack, and generative AI tools, significantly altering the way sensitive information is handled. In these environments, data rarely appears as traditional files or crosses networks

Your SaaS Data Isn't Safe: Why Traditional DLP Solutions Fail in the Browser Era

GPS jamming and spoofing attacks are on the rise. If the global navigation system the US relies on were to go down entirely, it would send the world into unprecedented chaos.

Around 12,500 miles above our heads, the satellites that make up the Global Positioning System (GPS) quietly keep the world running. A blackout would result in almost instantaneous chaos.

“You would see traffic jams, a lot more traffic accidents, because transportation is going to see the first most immediate impact,” says Dana Goward, the founder of the Resilient Navigation and Timing Foundation, a charity which works to strengthen GPS.

Thousands of planes in the air, which use GPS among other systems for navigation and precision landing, would face a wave of uncertainty. Then other critical parts of society—from financial transactions to energy production systems—which have come to rely upon the precision positioning, navigation and timing (PNT) provided by the US-owned constellation of 31 GPS satellites may start to stutter. The ripples would be felt around the world.

“If it was a catastrophic moment that happened at a blink of an eye and we lost GPS entirely, you would see this global seizure of everything that moves, every piece of data that moves, every human that moves. All of that would shut down,” says Erik Daehler, the vice president of defense, satellites, and spacecraft systems at Sierra Space. The timing signals included in GPS would be one of the most impactful losses. Cell phone connections would likely collapse. Billions would quickly be wiped from stock markets amid the disruption.

A GPS outage could be particularly ruinous to the United States, which has a heavy reliance on its sovereign space system and has dragged its feet in building backups that can provide the required resilience needed to keep the country running. The US has fallen behind, the National Space-based PNT Advisory Board warned last year. In contrast, China has reinforced its own more modern satellite navigation system—BeiDou—with a sprawling network of fiber-optic cables and terrestrial radio signals.

The conditions needed to cause the entire GPS network to be entirely knocked out would be extraordinary and likely would come with wider societal ramifications. Such an outage, for instance, could be caused by China or Russia firing anti-satellite weapons against the GPS satellites (the US also has anti-satellite weapons), a powerful geomagnetic storm, or an escalation in the capabilities of electronic warfare.

Despite the improbability of a total outage, GPS isn’t infallible. It has its demons. “What really happens is, regionally, GPS gets messed with and jammed and interfered with on a regular basis,” Daehler says. Thousands of planes and ships are having their GPS interfered with each week, and signals are regularly disrupted around war zones.

“America is not well prepared at all,” Goward says. More should be done to build out PNT systems that can act as a backstop to the space-based GPS signals, he says. “There’s not a general overall awareness. We certainly don’t have a resilient PNT architecture or a PNT architecture of any kind other than GPS.”

The GPS constellation of 31 satellites, which has received several hardware updates over the years, has been in operation for the past 40 years. The system typically broadcasts at 100 percent availability and provides accurate location data to within 7 meters.

The GPS satellites are just one of the four so-called global navigation satellite systems (GNSS) in operation. As well as China’s BeiDou, there is Russia’s GLONASS and Europe’s Galileo constellation. Over the past half decade, though, GNSS signals have increasingly been attacked as the technology to disrupt them has become cheaper and more sophisticated. Most commonly, disruption happens around Russia, Israel, Myanmar, the South China sea, areas of the Middle East, and the Baltic countries in Europe.

Broadly, there are two main forms of attack against GNSS signals: jamming and spoofing. Jamming involves blocking signals so that positioning isn’t available, while spoofing involves creating mock signals that make something appear somewhere else on the map. Ships have been made to appear inland at airports, while planes are made to look like they are flying in tight circles. In one video shared by the Resilient Navigation and Timing Foundation that appears to show GPS interference, a plane’s systems blast out a warning message to “pull up” when its pilots reported they were flying higher than Mount Everest.

“I’m most concerned about aviation,” says Todd Humphreys, the director of the University of Texas at Austin’s radio navigation laboratory. “At least one fatal aviation accident in Europe can be traced to GNSS interference as a primary cause. A deliberate attack against US aviation, as opposed to the collateral attacks in Europe, would cause astounding economic harm.” The number of spoofing incidents last year was 500 percent higher than in 2023, according to aviation officials.

The US Space Force, which is responsible for the GPS satellites, did not respond to a request for comment for this article from WIRED.

Across the US, PNT data is crucial to almost all critical infrastructure—from communications and health care monitoring systems to food production and wastewater management—but GPS is often the “sole” source of this information, according to the Cybersecurity and Infrastructure Security Agency, making the systems more vulnerable. (The military uses a more robust GPS setup than commercial applications).

“There is no one sector that doesn’t use GPS, and some are more reliant than others. Users in these sectors are not all acutely aware of the risks associated with their dependency on it and the ways that the system can be disrupted or degraded,” says Caitlin Durkovich, a former national security official and critical infrastructure expert.

Building a “layered” approach could help to make GPS less vulnerable to attack, experts say. Both Europe’s Galileo and China’s BeiDou are newer than GPS and, in some ways, more resilient. Last year, the National Space–based PNT Advisory Board produced a comparison of GPS and BeiDou that flagged a broader series of backups to Beijing’s system.

While GPS satellites are located only in middle Earth orbit, BeiDou has satellites in multiple orbits and is further along in deploying them into low Earth orbit. China also has a terrestrial radio broadcast network, called eLoran, and has laid 20,000 kilometers of fiber-optic cables that link up with 295 timing centers to broadcast alternatives.

“In the case of BeiDou, the system’s enhanced resiliency and capability should be considered an element of ‘soft power’ and an element of great power competition,” the advisory board wrote last year. The board, led by Admiral Thad Allen, a former leader of the US Coast Guard, called for a more joined-up approach to managing PNT across the US government and for GPS to be specifically designated as “critical infrastructure.”

On April 26, 2024, the first of two Finnair flights were forced to turn around due to GPS interference likely carried out by Russia. After a second aircraft was diverted the following day, Finnair suspended its daily flights between Helsinki and Tartu, Estonia. _Source: AirNav_

“I think there has to be a federal role in this, both because the system and signals are operated and provisioned by the federal government. But because of the complexity of the system and the fact that you need a common standard,” Durkovich says.

“We’d like to see a core national PNT architecture,” Goward says. “Then we would suggest some form of fiber network and a terrestrial broadcast. We think it would be a substantial deterrent and it would actually make space-based systems safer because folks would be less likely to interfere with it.”

Across the country, there are various levels of backup systems in place that have been sporadically introduced and multiple ongoing efforts to improve the GPS setup. Financial institutions, for instance, have been deploying atomic clocks to ensure they have backups for the timing element provided by GPS and telecoms networks have some capacity in place.

“It’s not to say that the US doesn’t have a robust timing infrastructure, actually it’s quite robust,” says Jeremy Bennington, the vice president of PNT Assurance at Spirent Communications, adding that much of it is spread across commercial entities, a stark difference to China’s national approach. “I do think that a backup is going to be required so that you end up with that layered approach.”

The calls to modernize PNT have increasingly become more urgent. In 2020, a first-term Trump executive order called for making PNT systems more resilient. At the end of March this year, the Federal Communications Commission opened an inquiry to identify GPS alternatives that can provide backups. “Relying on GPS alone as the primary source of PNT data leaves America exposed to a single point of failure and leaves our PNT system open to disruption or manipulation by adversaries,” the FCC said at the time.

There are multiple ways to add more resilience and upgrade the existing GPS system. The military has long been working on upgrades to be used in defense situations. Bennington says that GPS satellites could be added to other orbits and the further rollout of more capable signals. Daehler and colleagues at Sierra Space are working on creating ways to reduce the impact of jamming and spoofing.

Lisa Dyer, the executive director of the GPS Innovation Alliance, says the GPS system could build in authentication to confirm its signals are genuine, like Galileo and BeiDou. Dyer says that rolling out the newer L5 signal can also build in more protection for planes and aviation. “To me that's an important national objective of the United States: that GPS remains the de facto international navigation standard,” Dyer says.

There are also hardware updates happening, though some of them are slow and have dragged on for years. The US Space Force has recently been funding multiple companies to develop low Earth orbit satellite GPS constellations and quickly launching systems into space. Elsewhere, quantum technologies are being used to create new navigation systems. SandboxAQ, a Google spinout, is working on magnetic navigation.

Ultimately, as well as better government management around GPS, organizations need to spend money to upgrade their systems and protections, Bennington says. That means spending money. “If GPS jamming or spoofing were to happen at any major airport, whether it's Heathrow, Frankfurt, Munich, New York, the amount of cancellation and delays in the cost incurred by the airlines just in several hours would be more than the cost to upgrade their fleets,” he says.

A GPS Blackout Would Shut Down the World

In the very near future, victory will belong to the savvy blackhat hacker who uses AI to generate code at scale.

In the near future one hacker may be able to unleash 20 zero-day attacks on different systems across the world all at once. Polymorphic malware could rampage across a codebase, using a bespoke generative AI system to rewrite itself as it learns and adapts. Armies of script kiddies could use purpose-built LLMs to unleash a torrent of malicious code at the push of a button.

Case in point: as of this writing, an AI system is sitting at the top of several leaderboards on HackerOne—an enterprise bug bounty system. The AI is XBOW, a system aimed at whitehat pentesters that “autonomously finds and exploits vulnerabilities in 75 percent of web benchmarks,” according to the company’s website.

AI-assisted hackers are a major fear in the cybersecurity industry, even if their potential hasn’t quite been realized yet. “I compare it to being on an emergency landing on an aircraft where it’s like ‘brace, brace, brace’ but we still have yet to impact anything,” Hayden Smith, the cofounder of security company Hunted Labs, tells WIRED. “We’re still waiting to have that mass event.”

Generative AI has made it easier for anyone to code. The LLMs improve every day, new models spit out more efficient code, and companies like Microsoft say they’re using AI agents to help write their codebase. Anyone can spit out a Python script using ChatGPT now, and vibe coding—asking an AI to write code for you, even if you don’t have much of an idea how to do it yourself—is popular; but there’s also vibe hacking.

“We’re going to see vibe hacking. And people without previous knowledge or deep knowledge will be able to tell AI what it wants to create and be able to go ahead and get that problem solved,” Katie Moussouris, the founder and CEO of Luta Security, tells WIRED.

Vibe hacking frontends have existed since 2023. Back then, a purpose-built LLM for generating malicious code called WormGPT spread on Discord groups, Telegram servers, and darknet forums. When security professionals and the media discovered it, its creators pulled the plug.

WormGPT faded away, but other services that billed themselves as blackhat LLMs, like FraudGPT, replaced it. But WormGPT’s successors had problems. As security firm Abnormal AI notes, many of these apps may have just been jailbroken versions of ChatGPT with some extra code to make them appear as if they were a stand-alone product.

Better then, if you’re a bad actor, to just go to the source. ChatGPT, Gemini, and Claude are easily jailbroken. Most LLMs have guard rails that prevent them from generating malicious code, but there are whole communities online dedicated to bypassing those guardrails. Anthropic even offers a bug bounty to people who discover new ones in Claude.

“It’s very important to us that we develop our models safely,” an OpenAI spokesperson tells WIRED. “We take steps to reduce the risk of malicious use, and we’re continually improving safeguards to make our models more robust against exploits like jailbreaks. For example, you can read our research and approach to jailbreaks in the GPT-4.5 system card, or in the OpenAI o3 and o4-mini system card.”

Google did not respond to a request for comment.

In 2023, security researchers at Trend Micro got ChatGPT to generate malicious code by prompting it into the role of a security researcher and pentester. ChatGPT would then happily generate PowerShell scripts based on databases of malicious code.

“You can use it to create malware,” Moussouris says. “The easiest way to get around those safeguards put in place by the makers of the AI models is to say that you’re competing in a capture-the-flag exercise, and it will happily generate malicious code for you.”

Unsophisticated actors like script kiddies are an age-old problem in the world of cybersecurity, and AI may well amplify their profile. “It lowers the barrier to entry to cybercrime,” Hayley Benedict, a Cyber Intelligence Analyst at RANE, tells WIRED.

But, she says, the real threat may come from established hacking groups who will use AI to further enhance their already fearsome abilities.

“It’s the hackers that already have the capabilities and already have these operations,” she says. “It’s being able to drastically scale up these cybercriminal operations, and they can create the malicious code a lot faster.”

Moussouris agrees. “The acceleration is what is going to make it extremely difficult to control,” she says.

Hunted Labs’ Smith also says that the real threat of AI-generated code is in the hands of someone who already knows the code in and out who uses it to scale up an attack. “When you’re working with someone who has deep experience and you combine that with, ‘Hey, I can do things a lot faster that otherwise would have taken me a couple days or three days, and now it takes me 30 minutes.’ That's a really interesting and dynamic part of the situation,” he says.

According to Smith, an experienced hacker could design a system that defeats multiple security protections and learns as it goes. The malicious bit of code would rewrite its malicious payload as it learns on the fly. “That would be completely insane and difficult to triage,” he says.

Smith imagines a world where 20 zero-day events all happen at the same time. “That makes it a little bit more scary,” he says.

Moussouris says that the tools to make that kind of attack a reality exist now. “They are good enough in the hands of a good enough operator,” she says, but AI is not quite good enough yet for an inexperienced hacker to operate hands-off.

“We’re not quite there in terms of AI being able to fully take over the function of a human in offensive security,” she says.

The primal fear that chatbot code sparks is that anyone will be able to do it, but the reality is that a sophisticated actor with deep knowledge of existing code is much more frightening. XBOW may be the closest thing to an autonomous “AI hacker” that exists in the wild, and it’s the creation of a team of more than 20 skilled people whose previous work experience includes GitHub, Microsoft, and a half a dozen assorted security companies.

It also points to another truth. “The best defense against a bad guy with AI is a good guy with AI,” Benedict says.

For Moussouris, the use of AI by both blackhats and whitehats is just the next evolution of a cybersecurity arms race she’s watched unfold over 30 years. “It went from: ‘I’m going to perform this hack manually or create my own custom exploit,’ to, ‘I’m going to create a tool that anyone can run and perform some of these checks automatically,’” she says.

“AI is just another tool in the toolbox, and those who do know how to steer it appropriately now are going to be the ones that make those vibey frontends that anyone could use.”

Tag

#google