โŒ

Normal view

How Hackers Are Thinking About AI

14 April 2026 at 12:49

Interesting paper: โ€œWhat hackers talk about when they talk about AI: Early-stage diffusion of a cybercrime innovation.โ€

Abstract: The rapid expansion of artificial intelligence (AI) is raising concerns about its potential to transform cybercrime. Beyond empowering novice offenders, AI stands to intensify the scale and sophistication of attacks by seasoned cybercriminals. This paper examines the evolving relationship between cybercriminals and AI using a unique dataset from a cyber threat intelligence platform. Analyzing more than 160 cybercrime forum conversations collected over seven months, our research reveals how cybercriminals understand AI and discuss how they can exploit its capabilities. Their exchanges reflect growing curiosity about AIโ€™s criminal applications through legal tools and dedicated criminal tools, but also doubts and anxieties about AIโ€™s effectiveness and its effects on their business models and operational security. The study documents attempts to misuse legitimate AI tools and develop bespoke models tailored for illicit purposes. Combining the diffusion of innovation framework with thematic analysis, the paper provides an in-depth view of emerging AI-enabled cybercrime and offers practical insights for law enforcement and policymakers.

Claude Used to Hack Mexican Government

6 March 2026 at 12:53

An unknown hacker used Anthropicโ€™s LLM to hack the Mexican government:

The unknown Claude user wrote Spanish-language prompts for the chatbot to act as an elite hacker, finding vulnerabilities in government networks, writing computer scripts to exploit them and determining ways to automate data theft, Israeli cybersecurity startup Gambit Security said in research published Wednesday.

[โ€ฆ]

Claude initially warned the unknown user of malicious intent during their conversation about the Mexican government, but eventually complied with the attackerโ€™s requests and executed thousands of commands on government computer networks, the researchers said.

Anthropic investigated Gambitโ€™s claims, disrupted the activity and banned the accounts involved, a representative said. The company feeds examples of malicious activity back into Claude to learn from it, and one of its latest AI models, Claude Opus 4.6, includes probes that can disrupt misuse, the representative said.

Alternative link here.

Israel Hacked Traffic Cameras in Iran

5 March 2026 at 18:31

Multiple news outlets are reporting on Israelโ€™s hacking of Iranian traffic cameras and how they assisted with the killing of that countryโ€™s leadership.

The New York Times has an on the intelligence operation more generally.

Hacked App Part of US/Israeli Propaganda Campaign Against Iran

5 March 2026 at 12:28

Wired has the story:

Shortly after the first set of explosions, Iranians received bursts of notifications on their phones. They came not from the government advising caution, but from an apparently hacked prayer-timing app called BadeSaba Calendar that has been downloaded more than 5 million times from the Google Play Store.

The messages arrived in quick succession over a period of 30 minutes, starting with the phrase โ€˜Help has arrivedโ€™ at 9:52 am Tehran time, shortly after the first set of explosions. No party has claimed responsibility for the hacks.

It happened so fast that this is most likely a government operation. I can easily envision both the US and Israel having hacked the app previously, and then deciding that this is a good use of that access.

Prompt Injection Via Road Signs

11 February 2026 at 13:03

Interesting research: โ€œCHAI: Command Hijacking Against Embodied AI.โ€

Abstract: Embodied Artificial Intelligence (AI) promises to handle edge cases in robotic vehicle systems where data is scarce by using common-sense reasoning grounded in perception and action to generalize beyond training distributions and adapt to novel real-world situations. These capabilities, however, also create new security risks. In this paper, we introduce CHAI (Command Hijacking against embodied AI), a new class of prompt-based attacks that exploit the multimodal language interpretation abilities of Large Visual-Language Models (LVLMs). CHAI embeds deceptive natural language instructions, such as misleading signs, in visual input, systematically searches the token space, builds a dictionary of prompts, and guides an attacker model to generate Visual Attack Prompts. We evaluate CHAI on four LVLM agents; drone emergency landing, autonomous driving, and aerial object tracking, and on a real robotic vehicle. Our experiments show that CHAI consistently outperforms state-of-the-art attacks. By exploiting the semantic and multimodal reasoning strengths of next-generation embodied AI systems, CHAI underscores the urgent need for defenses that extend beyond traditional adversarial robustness.

News article.

Backdoor in Notepad++

5 February 2026 at 13:00

Hackers associated with the Chinese government used a Trojaned version of Notepad++ to deliver malware to selected users.

Notepad++ said that officials with the unnamed provider hosting the update infrastructure consulted with incident responders and found that it remained compromised until September 2. Even then, the attackers maintained credentials to the internal services until December 2, a capability that allowed them to continue redirecting selected update traffic to malicious servers. The threat actor โ€œspecifically targeted Notepad++ domain with the goal of exploiting insufficient update verification controls that existed in older versions of Notepad++.โ€ Event logs indicate that the hackers tried to re-exploit one of the weaknesses after it was fixed but that the attempt failed.

Make sure youโ€™re running at least version 8.9.1.

Hacking Wheelchairs over Bluetooth

14 January 2026 at 20:22

Researchers have demonstrated remotely controlling a wheelchair over Bluetooth. CISA has issued an advisory.

CISA said the WHILL wheelchairs did not enforce authentication for Bluetooth connections, allowing an attacker who is in Bluetooth range of the targeted device to pair with it. The attacker could then control the wheelchairโ€™s movements, override speed restrictions, and manipulate configuration profiles, all without requiring credentials or user interaction.

1980s Hacker Manifesto

13 January 2026 at 13:09

Forty years ago, The Mentorโ€”Loyd Blankenshipโ€”published โ€œThe Conscience of a Hackerโ€ in Phrack.

You bet your ass weโ€™re all alikeโ€ฆ weโ€™ve been spoon-fed baby food at school when we hungered for steakโ€ฆ the bits of meat that you did let slip through were pre-chewed and tasteless. Weโ€™ve been dominated by sadists, or ignored by the apathetic. The few that had something to teach found us willing pupils, but those few are like drops of water in the desert.

This is our world nowโ€ฆ the world of the electron and the switch, the beauty of the baud. We make use of a service already existing without paying for what could be dirt-cheap if it wasnโ€™t run by profiteering gluttons, and you call us criminals. We exploreโ€ฆ and you call us criminals. We seek after knowledgeโ€ฆ and you call us criminals. We exist without skin color, without nationality, without religious biasโ€ฆ and you call us criminals. You build atomic bombs, you wage wars, you murder, cheat, and lie to us and try to make us believe itโ€™s for our own good, yet weโ€™re the criminals.

Yes, I am a criminal. My crime is that of curiosity. My crime is that of judging people by what they say and think, not what they look like. My crime is that of outsmarting you, something that you will never forgive me for.

โŒ