Cybercriminals are increasingly adopting artificial intelligence (AI) to enhance their operations, according to a recent report from Microsoft Threat Intelligence. This trend signifies a major shift in the tactics used by these malicious actors, who are now employing generative AI to conduct tasks such as reconnaissance, phishing, and malware creation.
The report indicates that AI is being used to draft phishing emails, translate stolen content, and assist in malware debugging. Notably, groups like the North Korean actors known as Jasper Sleet and Coral Sleet have integrated AI into their cyber strategies, particularly targeting remote IT workers. They utilize AI tools to create realistic job applications and communications, allowing them to infiltrate Western companies.
Jasper Sleet has been identified as using AI to generate culturally appropriate names and email formats tailored to specific profiles, while also analyzing software development job postings to craft believable identities. The report further details how AI is aiding in the development of malware, with some programs capable of dynamically adapting their behavior based on runtime conditions.