We are seeing cybercrimes on the rise globally, with more sophisticated attacks. The nature of these ransomware attacks is shaping up differently with the easy accessibility of the generative AI tools; as a result, they are being misused. Artificial intelligence is not only being used to write frightening ransom messages but also to carry out the tasks themselves. It is no longer just a tool for more professional communication but rather a core part of cybercrimes. As per a new report by Anthropic, criminals are now relying more on technology to build malware and carry out full-fledged operations for hackers.
Anthropic report warns of new AI-driven cyberthreats, including "Vibe-Hacking"
Anthropic released a Threat Intelligence Report this Wednesday via Reuters about intercepting and shutting down multiple attempts by hackers to use its Claude AI systems to carry out malicious activities, send phishing emails, and even bypass built-in safeguards. By highlighting these new ways of exploiting generative AI and exposing the sophisticated misuse of its Claude AI models, it is shedding light on the new strategies cybercriminals are using to carry out their threats.
One of the most alarming parts of the report was a hacking group using Claude Code, the company's AI coding agent, to carry out an entire cyberattack campaign across 17 organizations. These included government agencies, healthcare providers, religious institutions, and emergency services. The AI model was used to craft ransom messages and even carry out the entire hacking process. Anthropic used the term "vibe-hacking" to describe this new kind of cyberattack, where AI's ability to generate emotional or psychological pressure is used to coerce victims into paying ransoms or giving up personal information.
The hacking group is said to have been demanding ransoms above $500,000, which sheds light on the use of AI in deploying high-stakes cyber extortion. The report also pointed to misuse not being limited to ransomware, but also involving fraudulent actions such as using AI to secure jobs at Fortune 500 firms through deception. Obstacles such as fluency in English or technical skills were overcome with the help of the artificial intelligence models to get through the hiring process.
There were other examples highlighted in the report, including romance scams through Telegram, wherein scammers built a bot using Claude to help them create persuasive messages in different languages and even generate flattering compliments for the victims who were being deceived in varied regions, including the U.S., Japan, and Korea. Anthropic has responded to these illegal activities by banning accounts, putting up more safety guardrails, and sharing the information with government agencies. The company's Usage Policy has also been updated to warn against using the tools to create scams or malware.
With the emergence of vibe-hacking, there seem to be even deeper concerns about the use of AI to exploit victims with greater precision. Governments and tech companies need to improve detection systems and ensure the evolution of safety measures keeps pace with the technology itself to prevent it from being used for manipulation.
Follow Wccftech on Google to get more of our news coverage in your feeds.
