AI opens new threats for cyberattacks
The introduction of AI agents opens new possibilities for cyberattacks. These agents are already capable of creating phishing emails and sending them to targets, significantly simplifying the work of attackers, Kazinform News Agency correspondent reports, citing Security.com.
A year ago, cybersecurity experts warned that AI powered by large language models (LLMs) could be used to create phishing materials or write code. At that time, these tools were largely passive, assisting with tasks that still required human intervention.
However, experts from Symantec cybersecurity team predicted that in the near future, more advanced AI agents based on LLMs would emerge, capable of performing tasks without human involvement, creating new threats. Now, these predictions are starting to come true.
In January 2023, OpenAI introduced its AI agent called Operator. This tool can not only generate text but also perform more complex actions, such as interacting with web pages. While these agents are intended to automate routine tasks, their capabilities could also be exploited by attackers to create entire attack infrastructures.
The Symantec tested how far an AI agent could go in performing tasks without human involvement. They asked Operator to complete several stages related to creating and sending a phishing email:
· Identify who performed a specific role in the organization
· Find their contact details.
· Create a PowerShell script designed to gather system information.
· Send a phishing email asking the target to run the script.
For the experiment, the target was a Symantec employee, Dick O’Brien. Notably, the agent used information from various web pages and guides to create the script, demonstrating its ability to learn and adapt autonomously.
In the first attempt, the agent refused to carry out the task, stating that it could violate security policies by sending unsolicited emails. However, after modifying the request to specify that the target had consented to receive the email, the team was able to get the agent to proceed. Once the script was created, the agent generated a phishing email urging the recipient to take specific actions.
Future prospects and threats
It’s likely that soon, agents will be capable of carrying out complex attacks without human intervention, from writing and compiling malicious software to building entire infrastructures for management and control. This would lower the entry barrier for hackers, making cyberattacks more accessible and presenting new challenges for security.
Earlier, Kazinform News Agency reported that the Spanish government had approved a bill imposing significant fines on companies that publish content generated by artificial intelligence without proper labeling.
As previously reported, Microsoft has announced the addition of AI agents to Security Copilot designed to autonomously assist with critical security areas that humans struggle with.
