Artificial Intelligence (AI) Agents are now being used by hackers to broaden their scope of attacks. AI agents are autonomous systems powered by artificial intelligence that can independently perform tasks, make decisions, and adapt to new situations, often learning from data to carry out complex actions with little to no human intervention. They can be used for tasks such as online shopping, writing scripts to interact with operating systems, and querying databases. Their intelligence has been increasing rapidly with the adoption and use of AI since 2022, based on their ability to learn from data that is inputted into the search engine.
Traditional AI Vs. Agent AI:
Since 2022, people have been using traditional AI (ChatGPT, CoPilot etc.) to perform specific tasks or solve problems through pre-programmed rules or patterns, requiring human input to function and typically lacking the ability to adapt or operate autonomously like more advanced AI agents. This has led to further development of AI agents, which can be used for similar tasks but operate independently. If you’ve ever seen the movie iRobot with Will Smith, it would be the “bad actor” robot in the film who becomes fully autonomous.
How It’s Used:
One example of how AI agents are being used maliciously is through validating credit card information. Hackers gather your credit card information through data breaches into the credit card companies or hack into your personal account through various tactics. Some of the ways hackers get into accounts is through phishing/smishing – tricking victims over text message, email, or voice call to give up personal information. If you remember we spoke earlier about how AI agents could be used to shop or even play video games. Hackers will use this to have the agent to “shop” online and make inconspicuous charges to your card to make sure they go through. If they do, then they know the card information is accurate.
Another example is that AI agents can hold users for ransom. In some new cases, by matching stolen data online with publicly known email addresses or social media accounts, composing messages, and holding entire conversations with victims who believe a human hacker has access to their social security number, physical address, credit card information, or more.
Have you ever received an automated call either from your bank or telemarketer? These calls have increased and become even more dangerous with the help of AI Agents. Hackers are using them to mimic family members’ voices or officials to social engineer attack victims into thinking it is a legitimate threat.
How To Protect Yourself:
- Be mindful of the information you are posting on social media or other public sites
- Think Critically; If you do receive a ransom call can you get ahold of the person vie phone call or message?
- Be cautious of AI generated messages and calls…if something seems off do some research before acting.
- Understand your privacy settings on your electronic devices and the apps you use.
- Stay informed by following pages like ours at DefendEdge or other blogs/articles. That way you’ll be in the know for new attacks and threats bad actors are using to get your information.
Leave a Reply