The idea that AI could generate super-potent and undetectable malware has been bandied about for years – and also already debunked. However, an article published today by the UK National Cyber Security Centre (NCSC) suggests there is a “realistic possibility” that by 2025, the most sophisticated attackers’ tools will improve markedly thanks to AI models informed by data describing successful cyber-hits.
“AI has the potential to generate malware that could evade detection by current security filters, but only if it is trained on quality exploit data,” the report by the GCHQ-run NCSC claimed. “There is a realistic possibility that highly capable states have repositories of malware that are large enough to effectively train an AI model for this purpose.”
