Google Uncovers Malware Using LLMs to Operate and Evade Detection

Published:

November 5, 2025

From

Help Net Security

Google's threat intelligence analysts have observed AI-powered malware being deployed in the wild, marking what they call "a new operational phase of AI abuse." The report highlights PromptLock, the AI-powered proof-of-concept ransomware developed by NYU Tandon researchers — with doctoral candidate Md Raz lead author on the paper — that was initially mistaken for an active threat by security firm ESET. Google's findings confirm that attackers are now creating similar malware leveraging LLMs to operate autonomously and evade security systems, representing a significant evolution in cyber threats.

Read The Article

Departments

Degrees & Programs

Resources

Overview

Community

News & Events

Google Uncovers Malware Using LLMs to Operate and Evade Detection

More to Read

Students Reimagine the Library Experience During the Hack Dibner Competition

Predicting the Peak: New AI Model Prepares NYC’s Power Grid for a Warmer Future

Meet Andrea González: Computer Engineer, Future Lawyer, and Skilled Debater