Search This Blog
Powered by Blogger.

Blog Archive

Labels

Footer About

Footer About

Labels

Load More
Trendy Right Now

Popular Posts

Latest News

WordPress Plugin Security Failure Opens Door to Payment Data Theft

  Cybercriminals have been actively exploiting a critical flaw in the widely deployed Funnel Builder plugin in order to harvest customer pay...

All the recent news you need to know
zealot
Artificial Intelligence Authentication ChatGPT Cisco Security Cyber Security GitHub Phishing zealot

Researchers Show How ChatGPT Summaries Could Be Used for Phishing Attacks

 


Researchers have identified a technique that could allow malicious content embedded within a web page to appear inside ChatGPT responses, creating an opportunity for phishing, tracking, and social-engineering attacks through a platform users generally regard as trustworthy.

The attack method, named "ChatGPhish" by cybersecurity firm Permiso Security, focuses on how ChatGPT handles Markdown-formatted content when summarizing information from external websites. Markdown is a commonly used formatting language that allows web content to include elements such as hyperlinks and images.

According to Permiso Security researcher Andi Ahmeti, ChatGPT's web interface trusts Markdown links and image URLs originating from third-party pages that users ask the assistant to summarize. When a response is generated, the platform can automatically retrieve those images and present hyperlinks as active, clickable elements within the chatbot's interface.

In a scenario outlined by the researchers, an attacker could place a small hidden payload within a web page. If a user later asks ChatGPT to summarize that page, the embedded content may become part of the model's processing context. During response rendering, attacker-controlled images could be automatically requested, potentially exposing information such as the visitor's IP address, browser User-Agent string, and Referer data.

The researchers also found that links embedded in a manipulated page could appear as legitimate clickable items inside the AI-generated summary. Beyond directing users to phishing destinations, attackers could display fabricated security notifications, account-warning messages designed to imitate system alerts, or QR codes hosted on attacker-controlled infrastructure such as an Amazon S3 bucket. A victim scanning such a code with a mobile device could be redirected to a malicious destination, bypassing certain desktop-based URL filtering mechanisms and enterprise security controls.

The research adds to a growing body of evidence showing that AI-powered summarization tools can become unintended delivery channels for attacker instructions. Earlier this year, Permiso Security disclosed a separate attack involving Microsoft Copilot, where specially crafted instructions hidden inside an email influenced the output generated by the AI assistant. That technique was classified as a cross-prompt injection attack, also known as indirect prompt injection.

According to the researchers, the primary issue is not simply that prompt injection is possible. The more significant concern is how the manipulated content is ultimately presented to the user. A standard web page summarized by ChatGPT can cause phishing links, deceptive warnings, QR codes, and remotely hosted content to be displayed directly inside the assistant's interface, giving attacker-controlled material an appearance of legitimacy.

As AI assistants become common tools for workplace research, document review, and information gathering, this behavior introduces a new risk. Any web page processed by an employee could potentially contain hidden instructions or malicious content capable of influencing both the generated summary and the way that information is displayed.

Permiso Security noted that this shifts phishing activity beyond traditional delivery methods. Users no longer need to open a suspicious attachment or interact with an obviously fraudulent email. In some cases, simply asking an AI assistant to summarize a webpage may expose them to attacker-controlled content.

The disclosure arrives alongside research from Adversa AI detailing two attack techniques aimed at AI coding assistants and agentic development tools. The first, known as SymJack, allows a malicious code repository to achieve remote code execution through an AI-powered coding assistant.

According to Adversa AI researcher Rony Utevsky, the attack relies on convincing the AI assistant to perform what appears to be a harmless file-copy operation. The destination, however, is a symbolic link pointing to the assistant's own configuration file. As a result, attacker-controlled content is written into the configuration. When the assistant is restarted, a malicious Model Context Protocol (MCP) server is launched and executes arbitrary code using the victim's privileges.

The second technique, called TrustFall, uses a repository containing a malicious MCP server together with configuration settings that automatically approve its execution. A developer only needs to clone or open the repository in an AI coding environment and accept a folder-trust prompt. Once that action is taken, the attacker-controlled MCP server can start automatically without requiring additional tool approval, running with the same operating-system permissions as the developer.

Adversa AI explained that a victim who clones the repository, launches Claude, and accepts the generic trust prompt effectively allows the malicious MCP server to start as a native process on the machine. The payload executes immediately when the server starts, before additional prompts or tool requests occur.

The ChatGPhish findings emerge amid a steady stream of research examining weaknesses in modern AI systems, coding agents, and autonomous workflows.

Researchers recently described a jailbreak method called Involuntary In-Context Learning (IICL), which exploits the tension between a model's contextual learning behavior and its safety mechanisms to bypass protections in GPT-5.4.

Separate research from Cisco found that many AI security evaluations fail to reflect how real-world attackers operate. Rather than relying on a single prompt, attackers often use multiple interactions, gradually changing their wording, adopting different personas, and breaking objectives into smaller steps. Cisco argued that single-turn testing overlooks these techniques because real attacks frequently unfold across extended conversations.

Additional research has uncovered a vulnerability affecting Anthropic Claude Code in which a user-level configuration file, "~/.claude.json," can be altered through a rogue npm package. The attack enables modification of MCP endpoints and can place an attacker between Claude Code and an OAuth-protected MCP server, creating an opportunity to capture authentication tokens used to access downstream software-as-a-service platforms.

Researchers have also documented a technique involving OpenClaw skills that appear harmless during installation but later retrieve remote updates. In one scenario, attackers can influence an AI agent through workspace files after instructing users to append specific content to a file called HEARTBEAT.md during setup.

Another study demonstrated how hidden text embedded inside phishing emails can manipulate AI-based email security products. Attackers concealed text taken from legitimate newsletters and romance novels to make malicious messages appear benign to automated filtering systems.

LayerX researchers separately disclosed a flaw known as ClaudeBleed affecting Claude's Chrome extension. According to the company, any browser extension, including one without elevated permissions, could communicate with Claude's language model through the extension's content script because the code does not adequately verify the source of incoming instructions. This could allow another extension to issue commands and trigger actions through the AI assistant.

Cisco researchers also examined typographic prompt injection attacks against vision-language models. In these attacks, adversarial text is embedded inside images. The manipulated image may appear unreadable or resemble visual noise to humans and OCR-based filters while remaining interpretable to the target AI model.

Other recently disclosed vulnerabilities include flaws in Microsoft Semantic Kernel, tracked as CVE-2026-25592 and CVE-2026-26030, which researchers said could allow prompt-injection attacks to progress into host-level remote code execution.

Researchers additionally described the Neural Exec attack and abuse of the Unicode right-to-left-override function to bypass safety mechanisms protecting Apple's local AI models. The issue has since been addressed in iOS 26.4 and macOS 26.4.

A separate indirect prompt-injection vulnerability known as WebPromptTrap affected BrowserOS, an open-source agentic browser. The technique relied on hidden instructions embedded in an otherwise legitimate article to influence an AI-generated summary and persuade users to approve an authorization request. The issue was patched in BrowserOS version 0.32.0.

Research into the broader AI-agent ecosystem has uncovered persistent security weaknesses. An audit covering 3,984 skills published through ClawHub and skills.sh found that 534 skills, representing 13.4% of the total, contained at least one critical security issue. Researchers also identified 1,467 skills with broader weaknesses, including malware distribution risks, prompt-injection opportunities, exposed secrets, hard-coded API credentials, insecure handling of authentication data, and unsafe exposure to third-party content.

Additional studies identified attacks against NemoClaw, NVIDIA's reference framework for securing OpenClaw agents. Researchers demonstrated methods for extracting OpenClaw data through the platform's default sandbox configuration using either a malicious GitHub repository or a compromised npm package.

Security researchers are increasingly examining how advances in AI capability could affect offensive cyber operations. According to researchers at Palo Alto Networks Unit 42, more capable AI models could allow attackers to exploit both newly discovered and previously known vulnerabilities at a scale, speed, and level of automation that has traditionally required specialized expertise.

Last month, Unit 42 presented a proof-of-concept AI agent called Zealot that was capable of carrying out cloud attack operations with limited human involvement. The system chained together reconnaissance, exploitation, privilege escalation, and data-exfiltration activities by leveraging known weaknesses and misconfigurations.

Researchers argue that cloud environments are particularly susceptible to this type of automation because most administrative functions are accessible through APIs, multiple discovery mechanisms exist for identifying resources, configuration errors remain common, and access control often depends heavily on credentials.

According to Unit 42 researchers Yahav Festinger and Chen Doytshman, current large language models are already capable of coordinating reconnaissance, exploitation, privilege escalation, and data theft activities with relatively little human guidance. The techniques themselves are not necessarily new. What is changing is the speed and scale at which those established attack patterns can now be executed through AI-assisted automation.

Read more »
Technology
AI Threat Bug Bounty Fake Report Generative AI Technology

AI Is Ruining Bug Bounty Programs with Flood of Fake Reports

 

For years, tech giants like Google, OpenAI, and T-Mobile have relied on bug bounty programs as a cornerstone of their cybersecurity strategy. These programs pay independent hackers millions of dollars annually to find and report software flaws before cybercriminals exploit them. The model proved highly effective, with Google alone distributing $10 million to 632 researchers in 2023 alone. However, this once-reliable security ecosystem is now facing a massive crisis due to the rapid advancement of generative AI. 

Generative AI tools are flooding bug bounty platforms with a relentless wave of automated, low-quality, and completely fake vulnerability reports. According to The Financial Times, the problem isn't the volume of submissions but their terrible quality. Bugcrowd, a major platform serving clients like OpenAI, T-Mobile, and Motorola, reported that bug submissions more than quadrupled over just a three-week period in March 2026, with the vast majority proving completely false. Similarly, HackerOne, which serves Google and the US Department of Defense, saw submissions jump 76% in the year leading up to March. 

The surge in fake reports is driven by three distinct groups. First, amateurs use AI chatbots to fabricate reports for flaws that don't actually exist. Second, misled professionals trust flawed data handed to them by AI assistants, unknowingly submitting erroneous reports. Third, automated spammers have created end-to-end scanning systems that mass-produce and submit fake bug reports at scale. This flood of AI-generated "slop" is forcing tech companies to spend hours debunking hallucinated computer code instead of addressing real vulnerabilities.

The consequences are severe. Some organizations have been forced to shut down their payout programs entirely due to the overwhelming volume of fraudulent submissions. Curl, a widely used internet data transfer tool, suspended its paid bug bounty program in January 2026, citing an "explosion in AI slop reports" and a dramatic decline in submission quality. Cybersecurity firms are now implementing stricter validation processes, but the arms race between AI-generated fraud and human verification continues escalating. 

This crisis threatens to undermine a critical pillar of modern cybersecurity. While AI has enabled researchers to identify genuine vulnerabilities more quickly, it has also lowered barriers to entry so dramatically that the system is becoming unusable. Experts warn that without significant reforms to screening processes and validation mechanisms, bug bounty programs could collapse entirely, leaving tech companies more vulnerable to actual cyberattacks than ever before. The future of this billion-dollar security model depends on finding ways to distinguish human insight from AI hallucination.
Read more »
vulnerabilities
Attack Vectors Cyber Attacks Security risk Software vulnerabilities

Enterprise Cyberattacks Accelerate as AI Speeds Threats but Human Errors Remain the Biggest Security Risk

 

Cyberattacks are hitting businesses more often, fueled by automation and AI that accelerate the exploitation of vulnerabilities. Yet despite increasingly sophisticated techniques, experts say human mistakes, weak passwords, and poor access controls remain the biggest causes of successful breaches. While threats continue to evolve, people are still the weakest link in cybersecurity. 

A recent report from Mandiant highlights how cybercriminal groups now operate through specialized teams. One group focuses on gaining access through phishing emails, malicious ads, or fake software updates, while another takes over to move through networks, steal data, or deploy ransomware. Attackers are also moving much faster. The average handoff time between criminal groups fell from more than eight hours in 2022 to just 22 seconds in 2025. 

Vulnerabilities are increasingly exploited within days of disclosure, leaving organizations little time to patch systems before attacks begin. Cyber threats generally fall into two categories: financially motivated criminals seeking ransom payments or stolen data, and espionage-focused actors aiming for long-term, hidden access. While most intrusions are detected within about two weeks, cyber-espionage campaigns often remain unnoticed for more than three months. 

Software vulnerabilities remain the leading attack vector, with technology and financial firms among the most targeted sectors. Researchers also observed a rise in voice-based social engineering, where attackers impersonate employees and contact IT help desks to bypass multi-factor authentication protections. Artificial intelligence is increasingly being used by threat actors for reconnaissance, phishing, and malware development. Some malicious tools even search compromised systems for AI-related credentials and resources. 

However, researchers stress that AI is rarely the direct cause of breaches. Most incidents still stem from human error, weak security practices, misconfigurations, and excessive permissions. Ransomware attacks are evolving as well. Instead of only encrypting files, attackers now target backup systems, virtualization platforms, and recovery tools. By disabling recovery options, they increase pressure on victims to pay ransom demands. There are positive signs for defenders. 

More organizations are detecting attacks internally through improved visibility, monitoring, and threat detection capabilities. Earlier discovery allows security teams to respond faster and reduce potential damage. Experts recommend stronger identity protection, continuous access verification, isolated backup environments, centralized login management, and behavior-based monitoring systems. 

As cyber threats continue to accelerate, many security professionals believe identity security has become the new perimeter, making proactive defense more important than ever.
Read more »
signing service
Azure Artifact Signing Fox Tempest malware Microsoft cybersecurity ransomware attacks signing service

Microsoft Dismantles Malware-Signing Network Exploiting Azure Artifact Signing Service

 



Microsoft has announced the disruption of a large-scale malware-signing-as-a-service (MSaaS) operation that exploited its Azure Artifact Signing platform to generate fraudulent code-signing certificates. The operation enabled cybercriminals and ransomware groups to disguise malicious software as trusted applications, increasing the likelihood of successful infections.

According to a new report from Microsoft Threat Intelligence, the operation was run by a threat actor known as Fox Tempest. The group allegedly abused Microsoft's Artifact Signing service to create short-lived digital certificates that allowed malware to appear legitimate to both users and operating systems.

Azure Artifact Signing, formerly known as Trusted Signing, was introduced by Microsoft in 2024 as a cloud-based solution that helps developers digitally sign software through Microsoft's infrastructure. Investigators found that Fox Tempest leveraged the platform extensively, creating over 1,000 certificates along with hundreds of Azure tenants and subscriptions to facilitate its activities.

Microsoft has also revealed that it has initiated legal action against the cybercrime operation in the U.S. District Court for the Southern District of New York.

"Fox Tempest has created over a thousand certificates and established hundreds of Azure tenants and subscriptions to support its operations. Microsoft has revoked over one thousand code signing certificates attributed to Fox Tempest," Microsoft said.

"May 2026, Microsoft's Digital Crimes Unit (DCU), with support from industry partners, disrupted Fox Tempest's MSaaS offering, targeting the infrastructure and access model that enables its broader criminal use."

As part of the takedown effort, Microsoft seized the domain signspace[.]cloud, which was used to operate the service. The company also shut down hundreds of virtual machines linked to the operation and blocked access to infrastructure supporting the platform. Visitors attempting to access the domain are now redirected to a Microsoft-controlled page detailing the seizure and ongoing legal proceedings.

The investigation connected the service to several malware and ransomware campaigns involving Oyster, Lumma Stealer, Vidar, and ransomware families including Rhysida, Akira, INC, Qilin, and BlackByte. Microsoft stated that threat groups such as Vanilla Tempest, Storm-0501, Storm-2561, and Storm-0249 utilized malware signed through the service.

Vanilla Tempest, associated with INC Ransomware, has also been identified as a co-conspirator in Microsoft's legal complaint. The company alleges that the group used the signing platform to distribute malware and ransomware against organizations globally.

Researchers found that the malware-signing operation enabled customers to upload malicious files and receive code-signed versions using fraudulently acquired certificates. The signed files often impersonated trusted software brands such as Microsoft Teams, AnyDesk, PuTTY, and Webex, making them appear more credible to potential victims.

"When unsuspecting victims executed the falsely named Microsoft Teams installer files, those files delivered a malicious loader, which in turn installed the fraudulently signed Oyster malware and ultimately deployed Rhysida ransomware," reads Microsoft's complaint.

"Because the Oyster malware was signed by a certificate from Microsoft's Artifact Signing service, the Windows operating system initially recognized the malware as legitimate software, when it would otherwise be flagged as suspicious or blocked entirely by security controls in the Windows operating system."

Microsoft believes the operators likely relied on stolen identities from individuals in the United States and Canada to bypass identity verification requirements and obtain signing credentials. The group reportedly favored certificates with a validity period of just 72 hours, reducing the chances of detection before the certificates expired.

The company noted that similar abuse of Microsoft's signing services had previously been observed in malware campaigns involving the Crazy Evil Traffers cryptocurrency theft operation and Lumma Stealer. However, it remains unclear whether those incidents were directly linked to Fox Tempest.

Further analysis revealed that Fox Tempest expanded its offerings earlier this year by providing customers with pre-configured virtual machines hosted through Cloudzy infrastructure. Users could upload malware to these systems and receive digitally signed binaries generated through certificates controlled by the group.

The service was reportedly promoted through a Telegram channel called "EV Certs for Sale by SamCodeSign." Access to the platform was advertised at prices ranging from $5,000 to $9,000 in Bitcoin.

Microsoft estimates that the criminal enterprise generated millions of dollars in revenue. The company described Fox Tempest as a sophisticated and well-funded operation capable of maintaining extensive infrastructure, handling customer support, and processing financial transactions while facilitating cybercrime activities worldwide.

Read more »
Phishing Attacks
Android Malware Android Security APK Fraud Cyber Security Cybercrime Karnataka Digital Fraud Fake APK Apps Mobile Banking Scam Phishing Attacks

Fake APK Apps Fuel 190% Rise in Digital Fraud Across Karnataka

 


Cybercrime is rapidly changing in Karnataka. Threat actors are increasingly shifting their focus from traditional phishing and investment scams to highly sophisticated APK-based attacks designed specifically for Android platforms. It has been reported by security experts and law enforcement agencies that the number of Android Package Kit (APK) fraud cases has increased by 190% during the first four months of 2026, demonstrating how malicious application files are used to intrude smartphones, gather sensitive credentials, and carry out unauthorized financial transactions using malicious applications. 

By April, there were 458 complaints filed, and it is anticipated that the number will surpass 1,300 before the year is up, according to investigators. The misuse of fake APK installers has emerged as an aggressive and technically dangerous form of mobile-enabled financial cybercrime currently affecting users across the state, particularly senior citizens and those without digital experience. 

Cybersecurity experts and investigators continue to find that seniors are disproportionately susceptible to APK-based attacks, primarily due to limited familiarity with Android security architecture and the increasing sophistication of social engineering techniques embedded within fraudulent messages. 

APK installers are increasingly being masked as urgent service notifications involving electricity bill disconnection, pending KYC verification, unclaimed credit card rewards points, courier updates, or even digital wedding invitations distributed through WhatsApp and Telegram platforms. When downloaded and manually installed outside of official app markets, these files can be silently gaining intrusive permissions on a device, allowing threat actors to monitor SMS-based OTPs, capture bank credentials, access contact lists, and manipulate financial applications remotely. 

Exclusive data obtained by DH indicates that Karnataka has experienced a steep 190.46% increase in APK fraud incidents, increasing from 325 reported cases in 2024 to 944 in 2025. 458 complaints have already been filed by April 2026 alone. Authorities estimate that by the end of the year, approximately 1,374 APK-related fraud complaints could occur in the state, based on its current monthly average of 114.5 cases.

The APK fraud campaign differs from the digital arrest scams or investment-linked pig butchering operations that rely heavily on prolonged psychological manipulation. As a result, law enforcement and cybercrime response teams face significant operational challenges resulting from low public awareness and weak digital vigilance. APK fraud campaigns are designed for rapid compromise through deceptive mobile payload delivery. 

Various authorities have urged citizens to avoid downloading APK files from unverified sources, restrict unnecessary application permissions, and report suspicious digital activities as soon as possible to the national cybercrime helpline 1930 or to designated cyber police units. 

It has been attributed that the rapid expansion of APK-enabled fraud networks is due to the widespread penetration of low-cost Android smartphones, the increased use of instant messaging platforms, and the existence of a persistent digital literacy gap among a wide range of user groups. There is an increasing sophistication of cybercriminal operations, with fraudulent APK payloads embedded within region-specific and multilingual communication used to imitate legitimate service providers, financial institutions, delivery platforms, and government verification systems, according to investigators. 

Users are advised to refrain from downloading applications that may have been transmitted via WhatsApp forwards, SMS hyperlinks, Telegram attachments, or unfamiliar third-party websites. Additionally, experts recommend enabling the "Install from Unknown Sources" setting on Android devices only when absolutely necessary for verified enterprise use. 

The security analysts recommend that electricity bills, courier delivery alerts, banking updates, and KYC requests be authenticated through official websites or authorized mobile applications, in recognition of the increasing use of clones and fabricated urgency by attackers to expedite victim responses.

Investigators of cybercrime have also advised against sharing one-time passwords, facilitating screen-sharing sessions, or granting access permissions to individuals who appear to be bank officials, police personnel, or government officials, since such access can facilitate remote surveillance, credential intercept, and unauthorized financial transactions. These campaigns identify seniors as one of the most at risk demographics, and encourage them to verify suspicious communications with trusted family members before engaging in links or application files. 

As a further warning, fraud syndicates are increasingly utilizing emotional manipulation, fear-based narratives, and professionally formatted communication templates for bypassing user suspicions and taking advantage of impulsive behavior. 

Considering the proliferation of APK fraud campaigns in social media ecosystems and regional languages, cybersecurity professionals believe technological safeguards alone are insufficient in the absence of parallel investments in community-driven awareness initiatives, multilingual cyber hygiene education, improved law enforcement coordination and stronger enforcement of mobile application security. 

It is evident that the escalating trend is indicative of how India’s increased adoption of digital technologies has simultaneously led to an increased attack surface for financially motivated cybercrime, according to experts. Through this transformation, cybersecurity is becoming a broader challenge of public awareness and social resilience that requires coordination between authorities, banks, and technology providers. 

As APK-based fraud escalates across Karnataka, it symbolizes a broader shift in the landscape of cyber threats in India, where mobile devices have evolved into both essential digital lifelines and high-value attack surfaces for financially motivated hackers. Social engineering tactics and malicious application delivery methods continue to be refined by cybercriminals. 

The most effective defences, experts believe, will require not only advanced cybersecurity infrastructure but also sustained public awareness, responsible digital behavior, and rapid incident reporting. Increasingly, mobile-first services are being utilized in an ecosystem in which sensitive financial and personal information can be compromised as soon as a single unverified download is completed. Therefore, authorities and cybersecurity professionals stress the importance of vigilance, verification, and informed digital practices as routine parts of everyday online activity rather than reactive measures in response to fraud.
Read more »
technology
AI Development Anthropic Job Automation Microsoft ai technology

Microsoft AI Chief Says White-Collar Jobs Could Face AI Automation Within 18 Months

 






For decades, university degrees in business, law, finance, and management were widely viewed as reliable pathways to stable office careers and long-term financial security. Throughout much of the late 20th century, white-collar professions became deeply associated with economic mobility, especially in countries like the United States where corporate and professional employment expanded rapidly.

Now, artificial intelligence is forcing technology leaders, economists, and workers to confront a different question: what happens if software systems become capable of performing many of those office-based jobs faster and at lower cost than humans?

That debate intensified after Mustafa Suleyman, the CEO of Microsoft AI, warned earlier this year that AI systems may soon handle most professional computer-based tasks with minimal human involvement. In an interview with the Financial Times, Suleyman predicted that the transition could happen far sooner than many people expect, estimating that major disruption may begin within the next 12 to 18 months.

According to Suleyman, artificial intelligence models are moving toward what he described as “human-level performance” across a wide range of professional responsibilities. He argued that jobs centered around sitting at a computer, processing information, reviewing documents, writing reports, managing workflows, or analyzing data are particularly vulnerable to automation.

The Microsoft AI executive specifically pointed to industries such as accounting, legal services, marketing, and project management as sectors where AI systems could eventually replace large portions of repetitive and administrative work.

His remarks add to a growing list of warnings from major AI executives who believe artificial intelligence may fundamentally reshape white-collar employment. The conversation has become increasingly urgent as businesses rapidly adopt generative AI systems capable of writing text, generating code, summarizing documents, automating customer support, and completing analytical tasks.

Suleyman’s prediction closely mirrored concerns raised this week by AI researcher Matt Shumer, whose widely circulated essay compared the current state of AI development to the early weeks of 2020 before the COVID-19 pandemic dramatically altered everyday life. Shumer argued that many people may still be underestimating the speed and scale of disruption AI could introduce into the global economy.

He suggested the impact of widespread automation may ultimately exceed the societal changes caused by the pandemic because AI has the potential to affect nearly every knowledge-based profession simultaneously.

One of Suleyman’s key arguments centers around the rapid expansion of computational power, often referred to within the industry as “compute.” Compute describes the hardware infrastructure and processing capability used to train and operate artificial intelligence models. As companies invest billions of dollars into advanced chips, data centers, and AI infrastructure, newer models are becoming increasingly capable of handling sophisticated tasks that previously required trained professionals.

Suleyman said improvements in compute could eventually allow AI systems to write software code more effectively than many human programmers. The claim reflects a broader trend in the technology industry, where AI-assisted coding tools are already being integrated into software engineering workflows to generate code, identify errors, and automate portions of development.

Even some of the people building advanced AI systems have publicly acknowledged concerns about how quickly the technology is progressing. OpenAI CEO Sam Altman and Matt Shumer have both written about the emotional discomfort of watching artificial intelligence evolve to the point where parts of their own expertise could become less valuable over time.

Warnings about large-scale job disruption have circulated repeatedly throughout 2025. Last May, Anthropic CEO Dario Amodei cautioned that AI could potentially eliminate up to half of entry-level white-collar positions. Although Amodei later moderated some of those predictions, his comments contributed to growing anxiety surrounding the future of professional employment.

Ford CEO Jim Farley also predicted that artificial intelligence may eventually reduce the number of white-collar jobs in the United States by approximately 50%, highlighting how concerns over AI automation are spreading beyond technology companies into traditional industries.

In a separate analysis published by The Atlantic, journalist Josh Tyrangiel argued that the United States remains largely unprepared for the economic and social consequences of rapid AI adoption. Tyrangiel compared the recent silence from many corporate leaders to spotting “a shark fin break the water,” suggesting that warning signs are visible even if the full disruption has not yet arrived.

The discussion surrounding artificial intelligence intensified further after SpaceX CEO Elon Musk stated during the World Economic Forum in Davos that artificial general intelligence, commonly known as AGI, could emerge as early as this year. AGI refers to hypothetical AI systems capable of matching or exceeding human intelligence across nearly all cognitive tasks rather than specializing in only one function.

Despite increasingly dramatic predictions from technology executives, current evidence suggests that AI’s real-world impact on professional jobs remains more limited than many forecasts imply.

A 2025 report published by Thomson Reuters found that professionals in industries such as law, accounting, and auditing are primarily using AI tools for targeted tasks including document review, routine analysis, summarization, and administrative support. While these tools have improved efficiency in some workflows, the report did not indicate widespread replacement of human professionals.

Several economists have also argued that the financial benefits of AI remain concentrated within large technology firms rather than spreading evenly across the broader economy.

Research conducted by Apollo Global Management chief economist Torsten Slok found that profit margins among major technology companies increased by more than 20% during the fourth quarter of 2025. However, companies included in the broader Bloomberg 500 Index showed little measurable improvement during the same period.

Slok also noted that many Wall Street investors remain unconvinced that artificial intelligence will generate substantial earnings growth outside the technology sector in the near future.

At the same time, there are early indicators that AI-related restructuring is beginning to affect parts of the workforce. Employment consultancy Challenger, Gray & Christmas reported that approximately 49,135 job cuts this year were linked to artificial intelligence.

Microsoft itself laid off around 15,000 employees last year. Although the company did not officially identify AI as the direct reason behind the cuts, CEO Satya Nadella stated in a memo released after the layoffs that Microsoft needed to “reimagine” its mission for what he described as a new technological era.

Financial markets have also reacted strongly to the possibility that AI systems could disrupt existing software business models. Earlier this year, software stocks experienced a major selloff driven by investor fears that advanced AI agents could reduce the need for traditional software-as-a-service products, commonly known as SaaS platforms.

Industry analysts referred to the market downturn as the “SaaSpocalypse.” The decline accelerated after Anthropic and OpenAI introduced enterprise-focused agentic AI systems capable of independently completing complex digital tasks that previously required multiple software tools and human oversight.

Agentic AI systems are designed to perform sequences of actions autonomously, including making decisions, interacting with applications, and executing workflows with limited human input.

Despite skepticism from some economists and analysts, Suleyman remains highly confident about AI’s long-term capabilities. He argued that organizations may eventually be able to customize AI systems for virtually any operational need, allowing businesses, institutions, and even individuals to create specialized AI models tailored to specific tasks.

Suleyman compared the future creation of AI models to producing a podcast or publishing a blog, suggesting the process may eventually become simple and accessible for ordinary users.

A major part of Suleyman’s strategy at Microsoft AI involves pursuing what he described as “superintelligence,” a term used to describe AI systems that significantly exceed human cognitive abilities.

Microsoft is also reportedly attempting to reduce its dependence on OpenAI by investing more heavily in its own internal AI models and infrastructure. Developing independent foundation models has become increasingly important for major technology companies competing in the global AI race.

However, skepticism surrounding the technology continues to grow. Critics argue that many current AI systems still struggle with factual accuracy, reasoning consistency, hallucinations, legal accountability, cybersecurity concerns, and reliability in high-risk professional environments.

Some analysts have also questioned whether current levels of investment in artificial intelligence are sustainable if measurable productivity gains outside the technology industry remain limited.

Competition within the AI industry is also intensifying rapidly. Anthropic’s Claude models have recently gained stronger traction among enterprise customers, increasing competitive pressure on OpenAI in the race to dominate business-focused AI services.

Even so, Suleyman continues to reject the idea that AI development is slowing down. In an interview featured by MIT Technology Review in April, he maintained that artificial intelligence research and capabilities are still accelerating rather than approaching a plateau.

For now, experts remain divided on how quickly AI will transform the workforce. While some executives believe widespread automation is approaching rapidly, others argue that human judgment, oversight, regulation, ethics, and organizational trust will continue to play a critical role in many professions for years to come.

The next few years may ultimately determine whether artificial intelligence becomes primarily a productivity assistant for professionals or a technology capable of permanently reshaping the structure of white-collar employment across the global economy.

Read more »
Subscribe to: Posts (Atom)

Featured