Google: APT45 Used AI Model to Discover and Weaponize Zero-Day in Mass Exploitation Campaign

Summary

Google's Threat Intelligence Group (GTIG) disclosed that hackers — specifically the North Korean state actor APT45 (Andariel) — used an AI model to discover zero-day vulnerabilities and weaponize them in what GTIG described as "a mass vulnerability exploitation operation." The actors sent thousands of repetitive prompts to analyze CVEs and validate proof-of-concept exploits. Google stated the model used was not Gemini and that its "proactive counter discovery" may have thwarted the operation. Ch