AI NEWS 24
Anthropic Launches Claude Sonnet 5: Enhanced Performance, Lower Cost, and Agentic Capabilities 96Escalating US-China AI Competition Creates Geopolitical Instability 96Open-Source LLM GLM-5.2 Reportedly Outperforms GPT-5.5 at 1/6th the Cost 96Meta to Launch Cloud Business to Monetize Excess AI Computing Capacity 95Global Investment Surges to Meet AI Data Center Power Demand 95Meituan Unveils LongCat-2.0, a Frontier-Scale AI Model Trained Exclusively on Chinese Chips 95China Expands Cyber Targeting Beyond Technology Amid Intensifying AI Competition with U.S. 95Meta's Autodata: AI Models Learn to Self-Generate Training Data 95AI Data Center Capacity Projected to Reach 150 GW by 2030 95Concerns Rise Over AI Models' Potential to Assist Terrorist Attacks 94///Anthropic Launches Claude Sonnet 5: Enhanced Performance, Lower Cost, and Agentic Capabilities 96Escalating US-China AI Competition Creates Geopolitical Instability 96Open-Source LLM GLM-5.2 Reportedly Outperforms GPT-5.5 at 1/6th the Cost 96Meta to Launch Cloud Business to Monetize Excess AI Computing Capacity 95Global Investment Surges to Meet AI Data Center Power Demand 95Meituan Unveils LongCat-2.0, a Frontier-Scale AI Model Trained Exclusively on Chinese Chips 95China Expands Cyber Targeting Beyond Technology Amid Intensifying AI Competition with U.S. 95Meta's Autodata: AI Models Learn to Self-Generate Training Data 95AI Data Center Capacity Projected to Reach 150 GW by 2030 95Concerns Rise Over AI Models' Potential to Assist Terrorist Attacks 94
← Back to Briefing

Escalating AI-Driven Cyber Threats: Browser Ransomware, Advanced Prompt Injection, and Supply Chain Risks Emerge

Importance: 93/1009 Sources

Why It Matters

The rapid emergence of AI-generated malware, sophisticated prompt injection attacks, and AI-driven supply chain threats significantly escalates the cyber risk landscape, posing direct threats to organizational data, operational integrity, and the secure adoption of AI technologies.

Key Intelligence

  • New "browser-only" ransomware attacks are being generated via LLM hallucinations, exploiting Chromium APIs to lock user browsers on Windows and Android.
  • Advanced prompt injection techniques like "CoT Forgery" and "InkJect" (visual prompt injection) are effectively bypassing LLM guardrails to extract sensitive or forbidden information.
  • Searches for AI "prompt injection" attacks have more than doubled in the past year, signaling a significant increase in this attack vector.
  • AI is facilitating novel supply chain threats such as "Phantom Squatting" and introduces new risks through LLM aggregators and AI API proxies.
  • These developments underscore critical security vulnerabilities in AI-powered browsers and the broader deployment of Large Language Models, demanding urgent mitigation strategies.