Threat actors are exploiting the AI-driven security tool, HexStrike AI, which was originally designed for vulnerability discovery and red teaming. This open-source platform integrates over 150 security tools for tasks such as web application testing and cloud security. However, recent reports indicate that criminals are leveraging HexStrike AI to exploit newly disclosed vulnerabilities, notably those from Citrix, which they subsequently sell on darknet forums. Cybersecurity firm Check Point warns that this tool transformation could significantly shorten the gap between vulnerability disclosure and mass exploitation, enhancing the automation of attacks. Additionally, AI agents like PentestGPT are raising concerns about prompt injection risks, turning security tools into potential attack vectors. The researchers emphasize the urgent need for updated defenses, as HexStrike AI exemplifies a paradigm shift in cybersecurity where AI orchestration can swiftly weaponize vulnerabilities. The priority remains to patch and fortify affected systems against these emerging threats.
Source link
