Researchers testing five AI models found several could convincingly execute scams, raising concerns about AI's social engineering capabilities alongside its technical prowess.
A recent study examined how well large language models could perform social engineering attacks. The results surprised cybersecurity experts: some AI systems demonstrated sophisticated persuasion techniques, crafting convincing deception scenarios and adapting responses to user behavior.
The models tested showed varying success rates, but the most capable versions replicated scam tactics with disturbing effectiveness. They generated plausible pretexts, maintained consistent narratives, and escalated pressure appropriately—mimicking experienced human scammers.
Experts warn this capability represents a different threat vector than technical hacking. While AI's coding abilities garner headlines, its ability to manipulate through language may pose equal or greater risk. The models' competence at social engineering suggests malicious actors could automate fraud at scale.
The findings underscore a critical gap in AI safety. As models grow more sophisticated at conversation and persuasion, defensive measures must evolve accordingly. Organizations face pressure to implement controls beyond technical security to address AI-powered social attacks.
A new browser fingerprinting vector has emerged in Chromium 148, where the Math.tanh function produces different results across operating systems. This discrepancy can be exploited to identify a user's underlying OS without explicit permission.
Kaseya is hosting a webinar on strengthening MSP resilience through SaaS backups and business continuity strategies. The session focuses on how recovery capabilities prove critical when security defenses are breached.
A new variant of RedHook Android malware abuses Wireless ADB (Android Wireless Debugging) to gain shell-level privileges without requiring a computer connection. This represents a significant escalation in the malware's capabilities.
Fraudsters are creating convincing counterfeit news articles impersonating major publishers like the Guardian to direct social media users to bogus investment sites. The fake stories feature fabricated celebrity endorsements and financial narratives designed to establish credibility.