AI-Enabled Malware Now Actively Deployed, Says Google
Google warns of “just-in-time AI” malware using LLMs to evade detection and generate malicious code on-demand
Malicious Code covers malware analysis, reported incidents, infrastructure, disruption efforts, and defensive guidance to reduce cyber risk.
Search across headline titles and summaries.
Background for this topic.
Malicious code is software, a script, or an altered program intended to perform unauthorized or harmful actions on a device or network. The term includes malware such as viruses, worms, trojans, spyware, and ransomware, as well as harmful macros or commands. Depending on its function, it may exploit a software weakness, execute with a user’s permissions, disrupt availability, or modify, destroy, or collect data.
Security teams should treat malicious code as both a prevention and detection concern: keep operating systems and applications patched, restrict unnecessary scripting and privileges, and use endpoint controls that identify unusual execution or persistence. Network and host telemetry can support investigation, while isolation and recovery from known-good backups can limit damage after execution. Analysis of samples and indicators can also guide threat intelligence and vulnerability-management priorities, but suspected code should be handled carefully to avoid executing it on production systems or exposing collected data.
Weekly headline count for the current query.
Google warns of “just-in-time AI” malware using LLMs to evade detection and generate malicious code on-demand
A Chinese developer has been sentenced to four years in prison after being found to deploy malicious code in his employer’s network, including a “kill switch”
Sophos has uncovered a scheme planting malicious code in 130+ GitHub repositories, targeting hackers and gamers
New WordPress malware disguised as a plugin gives attackers persistent access and injects malicious code enabling administrative control
HP Wolf highlighted novel techniques used by attackers to bypass email protections, including embedding malicious code inside images and utilizing GenAI
npm package @lottiefiles/lottie-player hacked with malicious code, draining crypto wallets via web3 pop-ups
ClickFix exploits fake error messages across multiple platforms, such as Google Meet and Zoom
Legitimate app installer modified with malicious code
Study also finds LLMs are poor at detecting malicious code
The bug allowed cyber-criminals to remotely execute malicious code without authentication credentials
JFrog said this is the first instance of packages with malicious code in NuGet
Secureworks said the malicious code is written in .NET and comprises a dropper and a payload