AI allows ransomware to evade detection.
Experts warn The coming of AI allows ransomware to evade the detection of EDR.
According to a report by the SCWorld website, a research team from Sophos, an enterprise cyber protection tool developer, has detected AI-powered Malware Toolkit that has the ability to evade a variety of detection systems, ranging from the ability to detect Active Directory (database management systems and enterprise users) and evade detection by endpoint security (EDR or Endpoint Detection and Response). It can break through EDR tools from a variety of developers, including Sophos, CrowdStrike, and Microsoft, all of which comes from that in that development stage, AI-based intelligent assistant tools (AI Agents) such as Cursor and Claude Opus have been brought into use since in the early coding stage, analytics, productivity improvements.
Some AI tools have also been assigned to research a variety of ways to emanate (Bypass) detection by cybersecurity tools, such as researching related documents, linking (Mapping) malware to the MITRE ATT & CK framework, testing malware with various EDR tools, bringing to such amazing detection evasion performance.
In addition, the research team also detected many capabilities within this AI toolkit, such as the Cobalt Strike profile feature used to make Traffic Beacon, the Telegram API key to contact the C2 control server (Command and Control) that is a bot on the famous chat service Telegram, the Python script used to shoot ShellCode (ShellCode Injection) to smooth malware with other Windows processes, and the Cloudflare Worker for camouflage contact with the C2 server which reaches Despite the toolkit and malware itself being developed by AI, the research team insists that at the operational stage it relies largely on spoiled operators.
# Trending # Drug sign with lemon8 # lemon 8 diary # ai # freedomhack
































































































