Google has confirmed that hackers used artificial intelligence to develop a zero-day exploit capable of bypassing two-factor authentication in a real-world attack. The tech giant coordinated with affected vendors to patch the vulnerability before the attack could escalate. The exploit stemmed from a business logic flaw, which AI models identified by understanding the authorization flow in context, a task challenging for traditional scanning tools.
Google's threat intelligence report highlights the growing use of AI by attackers to amplify vulnerability research and exploit development. The report notes that threat groups linked to China and North Korea are using AI for vulnerability research, while Russian-related groups focus on malware concealment. Despite differing views in the academic community on AI's impact on hacking, Google's findings underscore industry concerns about AI security risks.
Google Confirms AI-Driven Zero-Day Exploit in Real-World Attack
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.