Apparently, there are a couple of LLMs which are gaining traction with cybercriminals. That's led researchers at Palo Alto ...

WormGPT 4 sales began around September 27 with ads posted on Telegram and in underground forums like DarknetArmy, according ...

The cybersecurity landscape is undergoing a profound transformation. Traditional malware, characterized by static code and predictable behaviors, is being ...

The Russian state-sponsored group behind the RomCom malware family used the SocGholish loader for the first time to launch an attack on a U.S.-based civil engineering firm, continuing its targeting of ...

The new RomCom campaign uses SocGholish fake update lures to deliver its Mythic Agent tool against US firms doing business ...

Cyberattackers integrate large language models (LLMs) into the malware, running prompts at runtime to evade detection and augment their code on demand.

Still, malware developers aren't going to stop trying to use LLMs for evil. So while the threat from autonomous code remains ...

The code pulls a malware loader from a Cloudflare Workers domain which, in turn, pulls two ZIP archives. These deploy two payloads, including a StealC infostealer and an auxiliary Python stealer, ...

North Korean state-sponsored threat actors, part of the infamous Lazarus Group, have been seen hosting malware and other ...

As in the wider world, AI is not quite living up to the hype in the cyber underground. But it's helping low-level cybercriminals do competent work.

Cybersecurity researchers have uncovered a chain of critical remote code execution (RCE) vulnerabilities in major AI inference server frameworks, including those from Meta, Nvidia, Microsoft, and open ...

Recent tests conducted on leading AI models, including ChatGPT from OpenAI and Gemini from Google DeepMind, have revealed surprising vulnerabilities. Researchers applied adversarial prompts designed ...