Google has confirmed that hackers used artificial intelligence to develop a zero-day exploit capable of bypassing two-factor authentication in a real-world attack. The tech giant coordinated with affected vendors to patch the vulnerability before the attack could escalate. The exploit stemmed from a business logic flaw, which AI models identified by understanding the authorization flow in context, a task challenging for traditional scanning tools.
Google's threat intelligence report highlights the growing use of AI by attackers to amplify vulnerability research and exploit development. The report notes that threat groups linked to China and North Korea are using AI for vulnerability research, while Russian-related groups focus on malware concealment. Despite differing views in the academic community on AI's impact on hacking, Google's findings underscore industry concerns about AI security risks.
Google Confirms AI-Driven Zero-Day Exploit in Real-World Attack
Aviso Legal: O conteúdo disponibilizado no Phemex News é apenas para fins informativos. Não garantimos a qualidade, precisão ou integridade das informações provenientes de artigos de terceiros. Este conteúdo não constitui aconselhamento financeiro ou de investimento. Recomendamos fortemente que você realize suas próprias pesquisas e consulte um consultor financeiro qualificado antes de tomar decisões de investimento.