HP Wolf Security Uncovers Evidence of Attackers Using AI to Generate Malware: Latest Threat Insights Report

HP’s latest Threat Insights Report has unveiled a concerning trend in cybercrime – the use of Generative AI to write malicious code. The report highlights how threat actors are leveraging AI to develop malware scripts, including the use of malvertising to spread rogue PDF tools and embedding malware in image files.

One of the key findings of the report is the emergence of a sophisticated ChromeLoader campaign spreading through malvertising. This campaign leads unsuspecting users to professional-looking rogue PDF tools, ultimately infecting their systems with malware. Additionally, cybercriminals have been found embedding malicious code in SVG images, exploiting the automatic execution of JavaScript code in browsers to install infostealer malware.

The report sheds light on the evolving tactics of cybercriminals, helping organisations stay ahead of the latest threats in the ever-changing cybersecurity landscape. Notable campaigns identified by HP’s threat researchers include the use of Generative AI to develop convincing phishing lures, the proliferation of slick malvertising campaigns leading to malicious PDF tools, and the hiding of malware in SVG images.

Patrick Schläpfer, Principal Threat Researcher at HP, emphasized the significance of the findings, highlighting how AI assistance is lowering the barrier for cybercriminals to launch damaging attacks. With cybercriminals continuously updating their methods, businesses are urged to adopt a defence-in-depth strategy to protect against evolving threats.

By isolating threats and allowing malware to detonate safely, HP Wolf Security provides specific insight into the latest techniques used by cybercriminals. The report underscores the importance of building resilience and minimizing the attack surface to neutralize the risk of infection.