Microsoft's recent Threat Intelligence report reveals alarming insights into the use of artificial intelligence (AI) by cybercriminals, enhancing their capabilities across various cyberattack phases. The report emphasizes how these malicious actors utilize generative AI to streamline their operations and reduce the need for high technical skills, enabling more sophisticated attacks.
Among the specific threat groups identified are North Korean hacker collectives, known as Jasper Sleet and Coral Sleet, which have adopted AI to impersonate legitimate employees and penetrate Western organizations. The technology assists in crafting realistic identities, resumes, and communication to facilitate infiltration.
Furthermore, AI tools are reportedly being leveraged for malware development, allowing criminals to enhance malicious code, troubleshoot issues, and adapt malware across programming languages. The report also highlights Coral Sleet's capability to create counterfeit websites and establish attack frameworks rapidly. This trend underscores AI's role as a significant force multiplier for attackers, enabling them to operate with greater speed and efficiency.