Close Menu
  • Instructions
  • News
    • DeFi
    • Smart Contract
    • Markets
    • Web3
    • Adoption
    • Memecoins
    • Analysis
    • Mining
    • Scams
    • Security
  • Education
    • Learn
    • Wallets & Exchange
  • Documentaries
  • Videos
    • Alessio Rastani
    • Altcoin Buzz
    • Coin Bureau
    • Dapp University
    • DataDash
    • Digital asset News
    • EllioTrades Crypto
    • MMCrypto
    • Lark Davis
    • Ivan on Tech
    • Benjamin Cowen
  • Market
    • Crypto Market Cap
    • Heat Map
    • Converter
    • Metal Prices
    • Stock prices
  • Bonus Books
  • Tools
What's Hot

Sentora Launches Vaults on Stellar Network

July 17, 2026

Sentora Launches Vaults on Stellar Network

July 17, 2026

Altinteg Strengthens Compliance-Ready Traceability For Food Operations

July 17, 2026
Facebook X (Twitter) Instagram
Recession Profit AlertsRecession Profit Alerts
  • Instructions
  • News
    • DeFi
    • Smart Contract
    • Markets
    • Web3
    • Adoption
    • Memecoins
    • Analysis
    • Mining
    • Scams
    • Security
  • Education
    • Learn
    • Wallets & Exchange
  • Documentaries
  • Videos
    • Alessio Rastani
    • Altcoin Buzz
    • Coin Bureau
    • Dapp University
    • DataDash
    • Digital asset News
    • EllioTrades Crypto
    • MMCrypto
    • Lark Davis
    • Ivan on Tech
    • Benjamin Cowen
  • Market
    • Crypto Market Cap
    • Heat Map
    • Converter
    • Metal Prices
    • Stock prices
  • Bonus Books
  • Tools
Recession Profit AlertsRecession Profit Alerts
Home»Security»Google warns hackers are using AI to build zero-day exploit for planned mass cyberattack
Security

Google warns hackers are using AI to build zero-day exploit for planned mass cyberattack

May 13, 2026No Comments2 Mins Read

Cyber criminals and state-backed hackers are increasingly using generative AI to accelerate exploit development, automate malware operations and scale cyber campaigns, Google’s threat intelligence division (GTIG) said in a report published on Monday.

The findings show a shift from limited AI experimentation to large-scale operational deployment, with adversaries using AI to power attacks even as AI infrastructure and software ecosystems become targets themselves.

For the first time, GTIG has identified a real-world zero-day exploit developed with AI assistance.

According to the report, criminal actors built a 2FA bypass targeting a popular open-source web administration tool ahead of a planned mass exploitation operation. The campaign was disrupted before deployment after GTIG collaborated with the vendor on responsible disclosure.

Researchers noted that China- and North Korea-linked threat actors have shown sustained interest in AI-supported vulnerability research, including the use of persona-based prompting, automated exploit analysis and agentic frameworks designed to scale reconnaissance and testing activities.

PROMPTSPY and AI-driven malware

On the malware front, the report highlighted PROMPTSPY, an Android backdoor that embeds an autonomous agent feeding the device’s user interface state to Google’s Gemini API, receiving structured commands in return, and executing them (clicking, swiping, navigating) without human oversight.

It can capture biometric data, replay authentication gestures, and even prevent its own uninstallation by rendering an invisible overlay over the “Uninstall” button that silently swallows touch events.

Researchers also documented AI-assisted obfuscation techniques in malware linked to Russia-aligned operations, including dynamically generated code and AI-produced decoy logic intended to bypass detection systems.

Google warned that attackers are building professionalized infrastructure to obtain anonymized, large-scale access to premium AI models through proxy relays, automated account creation and trial-abuse schemes.

See also  Crypto Analyst Says Bitcoin (BTC) Ready To Target New Highs, Warns of Chainlink’s (LINK) ‘Final Correction’

At the same time, adversaries are targeting the AI software supply chain itself, including open-source AI tooling and model integration layers, to gain initial access to enterprise systems and steal credentials for ransomware and extortion operations.

The company said it is deploying AI defensively through tools such as Big Sleep and CodeMender to identify and patch vulnerabilities, while expanding safeguards across Gemini and related services.

Source link

build CyberAttack Exploit Google hackers Mass Planned Warns ZeroDay

Related Posts

ZachXBT Calls Hardware Wallets ‘Garbage,’ Singles Out Ledger as Worst

July 17, 2026

U.S. adds four Iran central bank crypto wallets to sanctions, Tether freezes $131 million of contents

July 17, 2026

International Sting Dismantles Cyprus-Based Crypto Fraud Hub Targeting Benelux Investors

July 16, 2026

Cameco And Brookfield Positioned To Lead New Jersey’s $24 Billion Nuclear Build Out

July 16, 2026
Top Posts

Complete Guide to Elastic Supply Tokens’ Use in DeFi

March 25, 2026

Declining open interest in futures market contrasts Bitcoin’s bullish rally

October 3, 2023

New SRBMiner-Multi 2.3.7 With Dynex (DNX) and Zilliqa (ZIL) Dual-Mining on Nvidia

October 5, 2023

Type above and press Enter to search. Press Esc to cancel.