Microsoft and OpenAI joined forces to combat foreign hackers who are utilizing artificial intelligence (AI) tools in their cyberattacks. In a recent blog post, OpenAI revealed that they have successfully disrupted five hacking attempts from China, Russia, Iran, and North Korea. These nation-state hackers were employing ChatGPT and other AI tools for their attacks.
The hackers targeted a range of activities, including querying open-source information, translating languages, finding coding errors, and executing basic coding tasks. OpenAI swiftly eliminated the accounts associated with these hackers. The Chinese hackers focused on using AI to research companies and cybersecurity tools, debug code, and create phishing content. They also sought to translate technical papers and acquire public information on intelligence agencies.
The Iranian hackers primarily engaged in spear-phishing campaigns, scripting for web and app development, and researching ways for malware to evade detection. North Korean hackers aimed to identify defense experts and organizations in the Asia-Pacific region, exploit publicly available vulnerabilities, perform basic scripting tasks, and draft content for phishing campaigns. Lastly, the Russia-affiliated hackers utilized AI for researching satellite communication protocols, radar imaging technology, and scripting.
While AI is becoming an increasingly prevalent tool among cybercriminals, Microsoft stated that they have yet to witness any particularly novel or unique AI-enabled attack techniques. However, cybercrime groups and nation-state actors are actively exploring different AI technologies to understand their potential value in operations and the security controls they must evade.
To counter these threats, Microsoft and OpenAI are committed to disrupting assets and accounts associated with hackers, enhancing the protection of OpenAI LLM technology and users, and establishing guardrails and safety mechanisms for their models. Microsoft also expressed its dedication to leveraging generative AI to disrupt threat actors and bolster hacking defense efforts worldwide.
According to Microsoft, they are currently monitoring over 300 hackers, including 160 nation-state actors and 50 ransomware groups. Moving forward, Microsoft will continue collaborating with OpenAI and other partners to share intelligence, improve customer protections, and support the broader security community.
In summary, Microsoft and OpenAI are actively combating foreign hackers who utilize AI tools for cyberattacks. By disrupting these hackers’ activities and enhancing security measures, the companies aim to defend against emerging threats in the digital landscape.
