Google has confirmed that hackers used artificial intelligence to develop a zero-day exploit capable of bypassing two-factor authentication in a real-world attack. The tech giant coordinated with affected vendors to patch the vulnerability before the attack could escalate. The exploit stemmed from a business logic flaw, which AI models identified by understanding the authorization flow in context, a task challenging for traditional scanning tools. Google's threat intelligence report highlights the growing use of AI by attackers to amplify vulnerability research and exploit development. The report notes that threat groups linked to China and North Korea are using AI for vulnerability research, while Russian-related groups focus on malware concealment. Despite differing views in the academic community on AI's impact on hacking, Google's findings underscore industry concerns about AI security risks.