Search
Google’s Threat Intelligence Team has issued a report, disclosing that a hacker collective has employed AI-driven tools to uncover genuine zero-day vulnerabilities. However, Google swiftly thwarted these attempts. The report also sheds light on a Python script that was inadvertently disclosed by the hacker group. This script is designed to circumvent the two-factor authentication (2FA) mechanism of a widely-used open-source network management tool. Notably, the script is replete with extensive comments and CVSS risk score details, which are suspected to have been generated by AI. The team cautions that as AI’s contextual reasoning abilities continue to evolve, its proficiency in discovering vulnerabilities is also on the rise. Consequently, security professionals should strive to enhance the efficiency of their product vulnerability assessments.
-
C114 Communication Network -
Communication Home
