July 07, 2026 12:17 am (IST)
Follow us:
facebook-white sharing button
twitter-white sharing button
instagram-white sharing button
youtube-white sharing button
China tests ballistic missile from nuclear submarine in Pacific: Australia, New Zealand respond | Baruipur horror: Main accused in alleged rape and murder of minor girl arrested; senior cops dissatisfied with handling of the case | Defence stocks jump after Rs 52,000 crore DAC approval sparks buying frenzy | 'Harry Kane is a great player': Donald Trump after England knocked Mexico out of the World Cup | 'Referee gave a lot against us': Harry Kane reacts after England's dramatic win over Mexico | England hold nerve with 10 men to knock out Mexico in five-goal World Cup classic | 'Why can't citizens protest against the government? They are being made slaves by slapping cases': Bombay HC slams Mumbai Police, quashes activist's externment | 'First he cheats on me...': Siya Goyal's old pub video goes viral amid probe into fiancé Ketan Agarwal's alleged murder | Ronaldo's goal, Ramos' last-gasp winner send Portugal past Croatia, set up Spain clash | India-US trade deal almost done! Piyush Goyal hints at breakthrough
Photo Courtesy: Pixabay

Microsoft says hackers from Russia, China, Iran, DPRK exploiting AI tools

| @indiablooms | Feb 15, 2024, at 07:13 am

Washington: Microsoft said on Wednesday that hacker groups allegedly linked to Russia, China, Iran and North Korea are exploiting its OpenAI tools to enhance their cyberoperations.

All four countries deny involvement in cyber attacks.

"In collaboration with OpenAI, we are sharing threat intelligence showing detected state-affiliated adversaries—tracked as Forest Blizzard, Emerald Sleet, Crimson Sandstorm, Charcoal Typhoon, and Salmon Typhoon— using LLMs [large language models] to augment cyberoperations," Microsoft said in a report.

The company alleged that Forest Blizzard is a "highly effective Russian military intelligence actor" linked to the Main Directorate of the General Staff of the Armed Forces.

"Its activities span a variety of sectors including defense, transportation/logistics, government, energy, NGOs, and information technology," the report stated.

North Korea's Emerald Sleet allegedly uses Artificial Intelligence to get expert opinions on North Korea. Content generation is likely to be used in phishing campaigns, the report said.

Crimson Sandstorm is an "Iranian threat actor" purportedly connected to the Islamic Revolutionary Guard Corps, according to Microsoft. "The use of LLMs has involved requests for support around social engineering, assistance in troubleshooting errors, .NET development, and ways in which an attacker might evade detection when on a compromised machine," the report said.

The company also identified two Chinese groups of concern.

Charcoal Typhoon, according to Microsoft, mostly focuses on tracking groups and individuals in Taiwan, Thailand, Mongolia, France, Nepal and globally who oppose Beijing's policies.

Another group, Salmon Typhoon, has been assessing the effectiveness of using LLMs throughout 2023 to source information on potentially sensitive topics, the report said.

"Our research with OpenAI has not identified significant attacks employing the LLMs we monitor closely," the report stated.

Microsoft reassured clients that the company has taken measures to disrupt assets and accounts associated with the alleged threat actors and shape the guardrails and safety mechanisms around its models.

(With UNI/SPUTNIK inputs)

Support Our Journalism

We cannot do without you.. your contribution supports unbiased journalism

IBNS is not driven by any ism- not wokeism, not racism, not skewed secularism, not hyper right-wing or left liberal ideals, nor by any hardline religious beliefs or hyper nationalism. We want to serve you good old objective news, as they are. We do not judge or preach. We let people decide for themselves. We only try to present factual and well-sourced news.

Support objective journalism for a small contribution.