Google researchers discovered a zero-day exploit that appeared to be developed with artificial intelligence and warned the vendor before a cybercrime group could launch a mass exploitation campaign. The incident is the clearest evidence yet that AI-assisted vulnerability research and exploit development is already happening, with Google noting the affected open-source administration tool was patched before widespread abuse. #Google #GTIG #BigSleep
Keypoints
- Google found a zero-day exploit that showed strong signs of AI involvement.
- The vendor was alerted before a mass-exploitation campaign could begin.
- The vulnerability affected a Python script used to bypass two-factor authentication.
- Researchers saw AI artifacts in the code, including documentation strings and a hallucinated CVSS score.
- Google believes AI-developed zero-days will become more common and more dangerous.
Read More: https://cyberscoop.com/google-threat-intelligence-group-ai-developed-zero-day-exploit/