August 28, 2025
August 28, 2025
#ESETResearch has discovered the first known AI-powered ransomware, which we named #PromptLock. The PromptLock malware uses the gpt-oss:20b model from OpenAI locally via the Ollama API to generate malicious Lua scripts on the fly, which it then executes 1/6 pic.twitter.com/wUZS7Fviwi
— ESET Research (@ESETresearch) August 26, 2025
Detecting and countering misuse of AI: August 2025 Anthropic
Anthropic's threat intelligence report on AI cybercrime and other abuses
https://www-cdn.anthropic.com/b2a76c6f6992465c09a6f2fce282f6c0cea8c200.pdf
https://www.nsa.gov/Press-Room/Press-Releases-Statements/Press-Release-View/Article/4287371/nsa-and-others-provide-guidance-to-counter-china-state-sponsored-actors-targeti/
New joint report from multi-country intelligence and law enforcement agencies on Salt Typhoon. The report details actor tradecraft, IOCs, and organizational attribution pic.twitter.com/6Nr6qBpsRi
— Christopher Glyer (@cglyer) August 27, 2025
https://t.co/5HR0HJl7ok
— Greg Linares (Laughing Mantis) (@Laughing_Mantis) August 27, 2025
Several years back I encountered a threat actor that would mimic your local ISP including delivering targeted ads that would display your ISP + numbers to call for support that eventually would result in a physical hardware implant delivery campaign.
The…
Stay tuned for a between two nerds episode next week covering this report.
Anthropic says a hacker used its Claude chatbot "to an unprecedented degree": Claude identified vulnerable companies, wrote infostealer malware, analyzed stolen files for extortion purposes, calculated extortion amounts, and wrote extortion messages. https://t.co/gVyu3b7YG0 pic.twitter.com/b90TZi17Qx
— Eric Geller (@ericgeller) August 27, 2025