Google confirms hackers used AI to create zero-day exploit bypassing two-factor authentication
Google's Threat Intelligence Group identified the first AI-generated zero-day exploit capable of bypassing two-factor authentication in a widely used web tool.Summary
Google's Threat Intelligence Group (GTIG) has identified a zero-day exploit created with the assistance of artificial intelligence that bypasses two-factor authentication (2FA). The exploit targeted a logic flaw in a popular open-source web administration tool. Researchers identified clear markers of AI-generated code, such as overly organized structures and detailed help menus, which distinguish it from manual hacking efforts. Google managed to prevent a planned mass exploitation campaign by working with the vendor to patch the vulnerability. This event marks a significant shift in cybersecurity, as AI lowers the barrier for developing sophisticated attacks by automating vulnerability discovery and exploit creation.
(Source:Crypto Briefing)