May 13, 2024 at 10:09AM
IBM’s X-Force penetration-testing team employed AI-driven tools to hack into a major computer component manufacturer’s network within eight hours. Using automation, they exploited a flaw in the manufacturer’s HR portal, escalated privileges, and utilized a rootkit to avoid detection. The team is also helping other technology providers, banks, and defense manufacturers combat similar security threats.
During the meeting, the X-Force penetration-testing team from IBM discussed their work on breaking into the networks of an unnamed tech business, described as the largest manufacturer of a key computer component in the world. They allocated three resources for three weeks and used their AI capabilities, specifically the platform named Vivid, to automate the process. With the automation they developed, they were able to hack into the company within eight hours. They highlighted the importance of AI in solving big data analysis problems and how it assists in connecting the dots during red teaming exercises.
The team found a flaw in the manufacturer’s HR portal, exploited it, and used AI to upload a shell, escalate their privileges, and cover their tracks with a rootkit. They emphasized that while AI tools can’t fully replace skilled hackers, they do help to streamline and expedite the process. The team also mentioned that government-backed intruders are increasingly using machine-learning tools to enhance their efficiency, and there is a concern about the growing power of AI in offensive actions. Nation-state crews are currently leading in investing in offensive AI tools, but with the increasing accessibility of such technologies, there is a potential risk of average hackers misusing them.
The team believes that there is also a positive aspect to this, as vendors are actively investing in using AI for proactive vulnerability management and defense. They highlighted the need for a shift in enterprise practices to proactively manage vulnerabilities and take action to mitigate risks.