Cybersecurity firm ESET has identified PromptLock, a novel AI-powered ransomware that leverages prompt injection on local large language models (LLMs) to inspect files, exfiltrate data, and encrypt systems across Windows, Mac, and Linux. While currently a proof-of-concept and not yet observed in active deployment, this discovery marks the first known instance of ransomware utilizing AI for core attack functions, potentially complicating detection due to varying indicators of compromise. This development underscores emerging cybersecurity risks associated with AI agent deployment and prompt injection vulnerabilities, signaling a significant evolution in ransomware threats.
Cybersecurity firm ESET has identified a novel malware strain, 'PromptLock', representing the first documented instance of AI-powered ransomware. The code, currently assessed as a proof-of-concept, utilizes a hard-coded prompt injection attack on a local large language model to execute malicious functions, including file system inspection, data exfiltration, and cross-platform encryption for Windows, Mac, and Linux systems. Although not yet observed in active deployment, its methodology is significant; it leverages an open-source API and model to dynamically generate malicious scripts. This capability presents a substantial challenge for conventional security measures, as the AI-driven generation of code could cause indicators of compromise (IoCs) to vary between executions, complicating detection. The discovery validates growing concerns within the security community about the risks of deploying AI 'agents' with high-level administrative access in corporate environments, highlighting a new attack surface where AI systems can be turned against their owners.
AI-powered research, real-time alerts, and portfolio analytics for institutional investors.
Request a DemoOverall Sentiment
mildly negative
Sentiment Score
-0.30
Ticker Sentiment
