Attackers combine AI into malware operations
Gemini is being misused in different methods too, Google mentioned, with some unhealthy actors embedding its APIs straight into malicious code.
Google recognized a brand new malware household it known as HONESTCUE that integrates Gemini’s API straight into its operations, sending prompts to generate working code that the malware compiles and executes in reminiscence. The prompts seem benign in isolation, permitting them to bypass Gemini’s security filters, in keeping with the report.
AttackIQ area CISO Pete Luban sees companies like Gemini as a simple approach for hackers to up their sport. “Integration of public AI fashions like Google Gemini into malware grants risk actors immediate entry to highly effective LLM capabilities while not having to construct or prepare something themselves,” he mentioned. “Malware capabilities have superior exponentially, permitting for sooner lateral motion, stealthier assault campaigns, and extra convincing mimicry of typical firm operations.”
