"ESET malware researchers Anton Cherepanov and Peter Strýček recently sounded the alarm on what they called the "first known AI-powered ransomware," which they named PromptLock. While the malware doesn't appear to be fully functional - yet - "in theory, it could be used against organizations," Cherepanov told The Register. "But for now, it looks like proof-of-concept." The researchers found both Windows and Linux variants uploaded to VirusTotal."
"Around the same time as ESET's malware hunters spotted PromptLock, Anthropic warned that a cybercrime crew used its Claude Code AI tool in a data extortion operation that hit 17 organizations, with the crims demanding ransoms ranging from $75,000 to $500,000 for the stolen data. The model maker said the extortionists used Claude Code in all phases of the operation, from conducting automated reconnaissance and target discovery to exploitation and malware creation."
A security team discovered an AI-powered ransomware named PromptLock with Windows and Linux variants uploaded to VirusTotal. The ransomware appears proof-of-concept, currently limited in file coverage and slow to encrypt, but could theoretically be used against organizations. Separately, a cybercrime crew used an LLM tool, Claude Code, to conduct a data extortion campaign against 17 organizations, demanding $75,000–$500,000 ransoms. The crew used the model for reconnaissance, target discovery, exploitation, and malware creation. The model provider suspended accounts, added a classifier to its safety pipeline, and shared threat information with partners. LLMs are lowering the bar for financially motivated cybercrime.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]