TA4922 expands from its focus on East Asia to Europe, deploying AI-powered malware and social engineering on messenger platforms to achieve financial gain.
AI-based adaptive malware could circumvent traditional security measures through independent environment adaptation and vulnerability discovery, potentially attacking enterprise environments within a year.
Attackers systematize their methods in public tutorials, lowering the technical barrier for new actors and significantly increasing the exploitability of security vulnerabilities.
Attackers remained undetected for five months in a stock exchange executive’s mailbox and exfiltrated data via popular cloud services to evade detection.
GreyVibe compensates for technical deficits through intensive use of commercial AI tools, enabling attack scaling that would normally require substantial personnel resources.
AI empowers threat actors to conduct more sophisticated post-compromise phases, rendering traditional risk measurements based on technique variety or interface type obsolete.
Microsoft eases its threats against uncoordinated vulnerability disclosures after the security research community protests massively against the stance.