This summer, Russia\u2019s hackers put a new twist on the barrage of phishing emails sent to Ukrainians.<\/p>\n
The hackers included an attachment containing an artificial intelligence program. If installed, it would automatically search the victims\u2019 computers for sensitive files to send back to Moscow.<\/p>\n
That campaign, detailed in July in technical reports from the Ukrainian government<\/a> and several cybersecurity companies<\/a>, is the first known instance of Russian intelligence being caught building malicious code with large language models (LLMs), the type of AI chatbots that have become ubiquitous in corporate culture.<\/p>\n Those Russian spies are not alone. In recent months, hackers of seemingly every stripe \u2014 cybercriminals, spies, researchers and corporate defenders alike \u2014 have started including AI tools into their work.<\/p>\n LLMs, like ChatGPT, are still error-prone. But they have become remarkably adept at processing language instructions and at translating plain language into computer code, or identifying and summarizing documents.<\/p>\n The technology has so far not revolutionized hacking by turning complete novices into experts, nor has it allowed would-be cyberterrorists to shut down the electric grid. But it\u2019s making skilled hackers better and faster. Cybersecurity firms and researchers are using AI now, too \u2014 feeding into an escalating cat-and-mouse game between offensive hackers who find and exploit software flaws and the defenders who try to fix them first.<\/p>\n \u201cIt\u2019s the beginning of the beginning. Maybe moving towards the middle of the beginning,\u201d said Heather Adkins, Google\u2019s vice president of security engineering.<\/p>\n In 2024, Adkins\u2019 team started on a project to use Google\u2019s LLM, Gemini, to hunt for important software vulnerabilities, or bugs, before criminal hackers could find them. Earlier this month, Adkins announced that her team had so far discovered at least 20 important overlooked bugs<\/a> in commonly used software and alerted companies so they can fix them. That process is ongoing. <\/p>\n None of the vulnerabilities have been shocking or something only a machine could have discovered, she said. But the process is simply faster with an AI. \u201cI haven\u2019t seen anybody find something novel,\u201d she said. \u201cIt\u2019s just kind of doing what we already know how to do. But that will advance.\u201d<\/p>\n Adam Meyers, a senior vice president at the cybersecurity company CrowdStrike, said that not only is his company using AI to help people who think they\u2019ve been hacked, he sees increasing evidence of its use from the Chinese, Russian, Iranian and criminal hackers that his company tracks.<\/p>\n \u201cThe more advanced adversaries are using it to their advantage,\u201d he said. \u201cWe\u2019re seeing more and more of it every single day,\u201d he told NBC News.<\/p>\n The shift is only starting to catch up with hype that has permeated the cybersecurity and AI industries for years, especially since ChatGPT was introduced to the public in 2022. Those tools haven\u2019t always proved effective, and some cybersecurity researchers have complained about would-be hackers falling for fake vulnerability findings generated with AI<\/a>.<\/p>\n Scammers and social engineers \u2014 the people in hacking operations who pretend to be someone else, or who write convincing phishing emails \u2014 have been using LLMs to seem more convincing since at least 2024<\/a>.<\/p>\n But using AI to directly hack targets is only just starting to actually take off, said Will Pearce, the CEO of DreadNode, one of a handful of new security companies that specialize in hacking using LLMs.<\/p>\n The reason, he said, is simple: The technology has finally started to catch up to expectations.<\/p>\n \u201cThe technology and the models are all really good at this point,\u201d he said.<\/p>\n Less than two years ago, automated AI hacking tools would need significant tinkering to do their job properly, but they are now far more adept, Pearce told NBC News.<\/p>\n