Chinese government-backed hackers are testing AI tools throughout their attack chains to make cyberattacks against US critical infrastructure more efficient and faster, according to FBI Deputy Assistant Director Cynthia Kaiser.
According to FBI Deputy Assistant Director Cynthia Kaiser, Chinese government-backed cyber groups are testing AI technologies at every stage of their attack chains against US critical infrastructure. These groups, including Volt Typhoon and Salt Typhoon, have successfully compromised hundreds of outdated routers, at least nine US telecommunications companies, and government networks. The attackers use AI to create fictitious business profiles at scale and craft more believable spear-phishing messages with large language models for social engineering campaigns. AI also helps adversaries map networks better once they gain access and assists in initial scanning and preparation stages. Additionally, criminals are using AI to create deepfake videos for fraud, successfully swindling millions from businesses by impersonating CEOs and other executives. The FBI tracks AI adoption closely across different countries and notes that China and cybercriminals show the widest adoption of AI use cases. While attackers are not yet using AI for end-to-end attacks, they are making their operations more efficient through AI integration. The report notes that China has 50 dedicated hackers for every one FBI cyber-focused agent.
Domain classification, causal taxonomy, severity scores, and national security assessments were LLM-classified and may contain errors.
Using AI systems to conduct large-scale disinformation campaigns, malicious surveillance, or targeted and sophisticated automated censorship and propaganda, with the aim of manipulating political processes, public opinion, and behavior.
Human
Due to a decision or action made by humans
Intentional
Due to an expected outcome from pursuing a goal
Post-deployment
Occurring after the AI model has been trained and deployed
No population impact data reported.