Search This Blog
Powered by Blogger.

Blog Archive

Labels

Footer About

Footer About

Labels

Load More
Trendy Right Now

Popular Posts

Showing posts with label AI-powered hacking. Show all posts
Ethical Hacking
AI cybersecurity AI Hacking AI Systems AI Tool AI-powered hacking Cyber Security ethical AI Ethical Hacking

AI Cybersecurity Tools Raise Questions About the Future of Ethical Hacking Competitions

 

Surprisingly, artificial intelligence is changing cybersecurity faster than expected. Some elite ethical hackers now wonder whether human-driven hacking contests will stay relevant much longer. Momentum built around this idea when someone prominent at Pwn2Own this year pointed to advanced AI systems possibly surpassing numerous expert analysts. Performance gaps might widen as these tools grow stronger. 

Among those who took part in Berlin’s yearly Pwn2own contest, Valentina Palmiotti stood out - not just by name but by result. Though many go by handles online, she competes under the tag “Chompie,” a nickname familiar across security circles. Success came her way more than others’, marking her top among solo entrants. Instead of waiting for flaws to be misused, the event encourages finding hidden bugs first. Rewards follow when researchers expose weaknesses in digital tools that were not yet public knowledge. 

This year’s competition handed out close to $1..3 million for spotting 47 previously unknown weaknesses in various software and systems. Because researchers shared the details with makers first, fixes arrived ahead of potential exploitation. Midway through the event, Chompie exposed weaknesses across several platforms - some tied to Nvidia - securing significant rewards. Her method? Endless stretches of probing flaws, something she laughed about calling "zombie hacker mode," where nights blurred into days thanks to sheer persistence and concentration. 

Though today's AI tools speed up code analysis and threat detection, Chompie sees a shift on the horizon. Her view: present systems boost efficiency, yet future versions may make several classic roles obsolete. What now requires teams might soon run on smarter algorithms alone. Nowhere has scrutiny been more intense than around Claude Mythos, a powerful AI said to detect vast quantities of software weaknesses. The creators state it has uncovered countless security issues spanning many applications. Because of risks tied to abuse, only certain government bodies and cyber defense groups are allowed to use it. Access remains tightly controlled amid ongoing debate. Some scientists see things differently. 

A top Pwn2-Owned champion, Orange Tsai of Taiwan, treats artificial intelligence as a helpful tool instead of a substitute for people's knowledge. Because it speeds up testing, new approaches get checked faster - this means more attacks can be studied quickly. Still, originality, gut instinct, and sideways leaps in logic stay within human reach only; these traits often spot flaws machines miss. Though tech advances, certain mental moves resist automation. 

Though artificial intelligence is advancing, hackers now employ automation more often to speed up tasks like scanning networks, crafting phishing messages, or building malicious software. Yet a large number of breaches continue depending on older methods - manipulating people or stealing login details - instead of exploiting cutting-edge flaws. 

Even with worries over automation, some specialists think artificial intelligence might boost digital defense by spotting flaws more quickly than hackers can act. Because systems evolve fast, teams protecting networks may rely on smart tools to stay ahead - provided those resources are used carefully and shared wisely.
Read more »
generative AI cybercrime
AI-powered hacking AWS security report Cyber Security FortiGate firewall attack Fortinet firewall breach generative AI cybercrime

AI-Powered Cybercrime Hits 600+ FortiGate Firewalls Across 55 Countries, AWS Warns

 

Cybercriminals using readily available generative AI tools managed to breach more than 600 internet-facing FortiGate firewalls across 55 countries within a little over a month, according to a recent incident analysis released by Amazon Web Services (AWS).

The operation, active between mid-January and mid-February, did not rely on sophisticated zero-day vulnerabilities. Instead, attackers automated large-scale attempts to access exposed systems by rapidly testing weak or reused credentials—essentially the digital equivalent of trying every unlocked door, but at high speed with the assistance of AI.

AWS investigators believe the operation was carried out by a financially motivated Russian-speaking group. The attackers scanned for publicly accessible FortiGate management interfaces, attempted to log in using commonly reused passwords, and once successful, extracted configuration files that provided detailed insight into the victims’ network environments.

According to AWS’s security team, the threat actors leveraged multiple commercially available AI tools to produce attack playbooks, scripts, and operational documentation. This allowed a relatively small or less technically advanced group to conduct a campaign that would typically require greater manpower and development effort. Analysts also discovered traces of AI-generated code and planning materials on compromised systems, indicating that AI tools were used extensively throughout the operation rather than just for occasional scripting tasks.

"The volume and variety of custom tooling would typically indicate a well-resourced development team," said CJ Moses, CISO at Amazon. "Instead, a single actor or very small group generated this entire toolkit through AI-assisted development."

After gaining access to the firewalls, the attackers retrieved configuration data containing administrator and VPN credentials, network architecture information, and firewall policies. Armed with these details, they attempted deeper intrusions by targeting directory services such as Active Directory, harvesting credentials, and exploring options for lateral movement across compromised networks. Backup infrastructure, including servers running Veeam, was also targeted during the intrusions.

AWS researchers noted that although the tools used in the campaign were functional, they appeared somewhat crude. The scripts showed basic parsing methods and repetitive comments often associated with machine-generated drafts. Despite their imperfections, the tools proved effective enough for large-scale automated attacks. When systems proved difficult to compromise, the attackers often abandoned them and shifted focus to easier targets, suggesting that their strategy prioritized volume over precision.

The affected organizations were spread across several regions, including Europe, Asia, Africa, and Latin America. The activity did not appear to focus on a single sector or country, indicating opportunistic targeting. However, investigators observed clusters of incidents suggesting that some breaches may have provided access to managed service providers or shared infrastructure, potentially increasing the scale of downstream exposure.

AWS emphasized that many of the compromises could have been avoided with standard cybersecurity practices. Preventing management interfaces from being publicly accessible, implementing multi-factor authentication, and avoiding password reuse would have significantly reduced the attackers’ chances of success.

The report comes shortly after Google cautioned that cybercriminal groups are increasingly integrating generative AI technologies—including tools such as Gemini AI—into their operations. These technologies are being used for tasks such as reconnaissance, target profiling, phishing campaign creation, and malware development


Read more »
Subscribe to: Posts (Atom)