Single Prompt Enables ChatGPT to Execute Full Cyber-Attack Chain, Researchers Claim
Cybersecurity researchers tested Open AI GPT 5.5’s offensive cyber capabilities – and the results showed how effective a frontier LLM can be for hackers
Explore the intersection of AI and cybersecurity. Stay informed on AI-driven security trends, tools, and threats in the ever-evolving digital landscape.
Search across headline titles and summaries.
Background for this topic.
Artificial intelligence (AI) describes computer systems that perform tasks such as recognizing patterns, making predictions, understanding language, or generating content. In security reporting, the term commonly includes machine-learning models used for detection and analysis, as well as generative AI applications that produce text, code, images, or other outputs.
AI can help analyze security telemetry, prioritize vulnerabilities, and support investigations, but its outputs can be wrong or manipulated. Important attack surfaces include prompt injection that steers an application into unintended actions, sensitive data being exposed through prompts or model outputs, and excessive permissions granted to AI systems that use external tools. Models can also be degraded by poisoned training data or evaded with carefully crafted inputs. Practitioners should protect training and operational data, limit model access and tool permissions, test for adversarial behavior, and require appropriate human validation before high-impact decisions.
Weekly headline count for the current query.
Cybersecurity researchers tested Open AI GPT 5.5’s offensive cyber capabilities – and the results showed how effective a frontier LLM can be for hackers
SANS Institute says governance programs are still nascent even as AI failures and threats grow
The White House announced Gold Eagle to help accelerate the discovery, prioritization and patching of flaws found by AI
Microsoft released fixes for a record 570 CVEs in its July Patch Tuesday update, as experts warn AI is dramatically accelerating vulnerability discovery and increasing patch volumes
Researchers at the AI Now Institute developed a proof-of-concept exploit showing common AI tools used for security could backfire
Microsoft has said the volume of Windows security updates is set to grow as it uses AI to find new bugs
Wiz discovered GhostApproval, a symlink flaw in six major AI coding assistants that bypasses approval
Over 70 cybersecurity organizations have signed the CREST AI Charter detailing responsible use of AI for security
Cybersecurity researchers at ESET identify big rise in suspicious and malicious toolsets which put users at risk from cyber-attacks
Sygnia report details how agentic AI accelerated weeks-long attack to just 72 hours
The National Cyber Security Centre wants to work with AI partners to build a new “Cyber Shield” to defend the UK
Attacks also used a compromised chatbot in campaign to steal sensitive information from Business Users
Zscaler found sites hiding prompt-injection text to manipulate AI agents into crypto payments
IWF and NCA warn that growing numbers of images and videos are being manipulated into sexual abuse material
Researchers have revealed JadePuffer, the first agentic AI-powered ransomware campaign, highlighting how autonomous agents can automate cyber-attacks
The new classifier in Fable 5 blocks the jailbreak technique that prompted the US export controls “in over 99% of cases”
OpenAI is previewing its GPT-5.6 Sol model to a vetted few at the US government's request
Cobalt study finds 20-percentage-point drop in number of organizations relying solely on AI automation for testing
LayerX tricked AI browsers including ChatGPT Atlas and Comet into bypassing their guardrails
SentinelLabs found a North Korea-linked macOS backdoor using prompt injection on AI triage tools