Google Uncovers Hackers Using AI for Zero-Day Attack
Google Uncovers Hackers Using AI for Zero-Day Attack
https://www.pymnts.com/cybersecurity/2026/google-uncovers-hackers-using-ai-zero-day-attack/
Publish Date: 2026-05-11 13:28:00
Source Domain: www.pymnts.com
Google cybersecurity researchers said in a Monday (May 11) report that they uncovered hackers using artificial intelligence to take advantage of so-called “zero-day” flaws.
The discovery is a first for the Google Threat Intelligence Group (GTIG), which also explored in the report the way AI “serves as both a sophisticated engine for adversary operations and a high-value target for attacks.”
“Threat actors are leveraging AI to augment various phases of the attack lifecycle,” the report said. “This includes supporting the development of vulnerability exploits and malware, facilitating autonomous execution of commands, enabling more targeted and well-researched reconnaissance, and improving the efficacy of social engineering and information operations.”
Zero-day attacks involve cybercriminals exploiting a previously unknown flaw in a system’s hardware or software before a developer has a chance to address that vulnerability.
In the incident Google found, hackers exploited a zero-day vulnerability in a Python script that allows the user to get around two-factor authentication on a “popular open-source, web-based system administration tool,” per the report. GTIG worked with the vendor in question to disclose the vulnerability and put a stop to the threat.
“Although we do not believe Gemini was used, based on the structure and content of these exploits, we have high confidence that the actor likely leveraged an AI model to support the discovery and weaponization of this vulnerability,” the report said.
Advertisement: Scroll to Continue
A spokesperson for Google told Bloomberg News that the researchers also don’t think Anthropic’s Mythos model was used. Anthropic has said it would not make Mythos widely available, as the way it employs AI to spot software vulnerabilities makes it a risk to national security.
Meanwhile, AI has brought the cost of running a convincing fraud campaign to almost zero.
“Automated tools let criminals…
