Google blocks 1st known AI driven attack on 2FA
Google just blocked the first known AI-driven attack targeting two-factor authentication (2FA).
Hackers used an AI-generated Python script to exploit a hidden flaw in a popular server tool, something regular security tools missed.
Their goal was to carry out a mass exploitation event, something that could have affected thousands or potentially millions of accounts, and Google's team caught it before any real damage was done.
Google report warns AI aided cybercrime
Google clarified its Gemini AI wasn't used in the hack; another AI model showed signs of helping create the hacker's script.
The company's recent report warns that cybercriminals are now using AI to make smarter malware and phishing scams, like PROMPTSPY, which can steal PINs and is tough to delete.
Experts recommend keeping your apps updated, switching from SMS codes to authenticator apps for 2FA, and double-checking app permissions for extra safety.