AI worm that infects computers and reads emails created by researchers
Security researchers have developed a self-replicating AI worm that can infiltrate people’s emails in order to spread malware and steal data.
Dubbed Morris II, after the first ever computer worm from 1988, the computer worm was created by an international team from the US and Israel in an effort to highlight the risks associated with generative artificial intelligence (GenAI).
The worm is designed to target AI-powered apps that use popular tools like OpenAI’s ChatGPT and Google’s Gemini. It has already been demonstrated against GenAI-powered email assistants to steal personal data and launch spamming campaigns.
The researchers warned that the worm represented a new breed of “zero-click malware”, as the victim does not have to click on anything to trigger the malicious activity or even propagate it. Instead, it is carried out by the automatic action of the generative AI tool.
“The study demonstrates that attackers can insert such prompts into inputs that, when processed by GenAI models, prompt the model to replicate the input as output (replication) and engage in malicious activities (payload),” the researchers wrote.
“Additionally, these inputs compel the agent to deliver them (propagate) to new agents by exploiting the connectivity within the GenAI ecosystem.”