ADVERTISEMENT

Google reveals hackers used AI to exploit weakness in two-factor authentication

Google threat intelligence claims to have identified the first known case of cyber attackers using AI to help develop a zero-day exploit. Elsewhere, LLMs are being used to hide malware and create deepfake-driven influence campaigns.

gmail_logo_dark_red

Image by Omer Taha Cetin/Anadolu/Getty.

Ann-Marie Corvin
Ann-Marie Corvin Senior Journalist
May 11, 2026 Updated: 14 May 2026 2 min read

Listen to this article

0:00
0:00
Key takeaways:
“Our analysis of exploits associated with this campaign identified a zero-day vulnerability implemented in a Python script that enables the user to bypass two-factor authentication (2FA) on a popular open-source, web-based system administration tool.”
GTIG AI Threat Tracker report, May 11th.
human chest with heart with the letters CVE
Advanced AIs are getting better at detecting and developing vulnerabilities. Image by Cybernews

Why Google thinks the zero-day was AI-driven

ADVERTISEMENT

Android backdoor: Promptspy

Android keyboard app bug
Image by Shutterstock.

AI used on hacktivist influencer campaigns


ADVERTISEMENT