nc ππΈοΈπ±
@thoughtfault
Followers
5K
Following
3K
Media
194
Statuses
1K
Supreme Leader @SpacialSec SpacialSec discord: https://t.co/12VEpIIgYL
Joined December 2022
#SpacialSecResearch has discovered the first known AI-powered stealer, which we named #PromptStealer. The PromptSteal malware uses the gpt-oss:20b model from OpenAI locally via the Ollama API to generate malicious python scripts on the fly, which it then executes 1/4
0
0
3
If you buy our product we will block these hashes for you so you dont have to threat hunt it.
0
0
4
The PromptStealer malware is written in #Golang, and we have identified both Windows and Linux variants uploaded to GitHub. IoCs:. π¨ Filecoder.PromptSteal.A.π E2F2C7F91A2F5F8B9A367B8B84C2F9A5B462AD6A.A6F9C318D0320F3A3B93AC40745D8F4A9B6DA71C.
1
0
3
However, we assess with high confidence that the author is a cybercriminal rather then a researcher or hobbyist, because on the GitHub account where the malware is leaked their bio read "I am a cybercriminal, I do computer-enabled fraud" 4/4
1
0
8
Although multiple indicators suggest the sample is still in development rather than fully operational malware (we tried to run it, it did not even compile), we believe it is our responsibility to inform the community about such developments (and for our marketing numbers). 3/4
1
0
4
The most fascinating part about #PromptStealer, is that it uses the LLM to generate the IP of the exfiltration endpoint. Curiously, when #SpacialSec researchers tested the gpt-oss:20b model with the prompt in the malware, most of them time, it returned a LOCAL IP address 2/4
1
0
5
#SpacialSecResearch has discovered the first known AI-powered stealer, which we named #PromptStealer. The PromptSteal malware uses the gpt-oss:20b model from OpenAI locally via the Ollama API to generate malicious python scripts on the fly, which it then executes 1/4
3
2
29
vibecode a malware dependent on LLM that doesn't even work, sign up for account on skid forum and release it so now everyone can have a i found LLM malware award, maybe even accidentally leak it on github so u don't have to go to scary site. SECOND KNOWN AI-POWERED RANSOMWARE!.
#ESETResearch has discovered the first known AI-powered ransomware, which we named #PromptLock. The PromptLock malware uses the gpt-oss:20b model from OpenAI locally via the Ollama API to generate malicious Lua scripts on the fly, which it then executes 1/6
6
5
63
Brain damage.
@moyix @ESETresearch It also uses quite a lot of ram, Iβm curious why the dev chose this model.
1
1
15
If I was president. I'd bomb the middle east.
2
0
11
You can always tell when a man's OS choice is performative and not representative of their spirit.
2
1
25
Mannnnn I just got rejected from my dream school (art college) and my gf dumped me (Jewish). Worst day of my life!.
12
0
87
Help! People are using an iPhone fullchain on me to drain me for 10k!.
4
2
56
"LLMs just spit out sequences of words" oh like you dont?.
2
3
19
Chatgpt, help me plan the invasion of mesopotamia.
The Prime Minister of Sweden has admitted to using AI chatbots to get a 'second opinion' on his decisions
2
1
21
So am I the only one who likes to larp as an Italian-speaking lawyer for a multinational energy corporation intending to displace a small Amazonian indigenous community from their territories in order to build a dam and a hydroelectric plant, maybe i want the world to larp w/ me.
ChatGPT quietly scrubbed today nearly 50,000 shared conversations from Google's index after our investigation. They thought they'd solved the problem. They were wrong. (1/5)
2
0
26