Breaking
DEWM-Achtelfinale: Belgien gleicht gegen die USA aus und geht erneut in FührungFRCoupe du Monde 2026 : L'Espagne élimine le Portugal, la Belgique bat les USA dans un climat tenduBRItamaraty vê 'risco' de EUA usarem 'força militar' contra o Brasil após PCC e CV serem declarados terroristasBREx-namorado é preso por matar influenciadora a facadas em Horizonte, CearáINTLSri Lanka Prison Riot Leaves 26 Dead, Over 100 InjuredARالدفاعات الروسية تسقط 9 طائرات مسيرة أوكرانية فوق موسكوCNHong Kong Issues Amber Rainstorm Warning for Yuen Long Amid Severe DownpoursCN印太戰略智庫執行長矢板明夫在台中演講時遭中國籍男子揮拳攻擊KR용인시, 어플라이드 머티어리얼즈 코리아와 투자 협약 체결KRLG에너지솔루션, 2분기 흑자 전환…세액공제 제외 시 1천억원대 적자DEWM-Achtelfinale: Belgien gleicht gegen die USA aus und geht erneut in FührungFRCoupe du Monde 2026 : L'Espagne élimine le Portugal, la Belgique bat les USA dans un climat tenduBRItamaraty vê 'risco' de EUA usarem 'força militar' contra o Brasil após PCC e CV serem declarados terroristasBREx-namorado é preso por matar influenciadora a facadas em Horizonte, CearáINTLSri Lanka Prison Riot Leaves 26 Dead, Over 100 InjuredARالدفاعات الروسية تسقط 9 طائرات مسيرة أوكرانية فوق موسكوCNHong Kong Issues Amber Rainstorm Warning for Yuen Long Amid Severe DownpoursCN印太戰略智庫執行長矢板明夫在台中演講時遭中國籍男子揮拳攻擊KR용인시, 어플라이드 머티어리얼즈 코리아와 투자 협약 체결KRLG에너지솔루션, 2분기 흑자 전환…세액공제 제외 시 1천억원대 적자
Newsgather
BackAI-Powered Worms Pose New Cybersecurity Threat, Researchers Warn
AI-Powered Worms Pose New Cybersecurity Threat, Researchers Warn
Urgent
Decrypt6/9/2026Tech3 min read

AI-Powered Worms Pose New Cybersecurity Threat, Researchers Warn

Quick Look

Researchers have developed a proof-of-concept AI-powered computer worm that can autonomously identify vulnerabilities, generate tailored attack strategies, and spread across networks, adapting its tactics in real-time without human operators.

AI-generated summary

Why It Matters

Researchers have developed a proof-of-concept AI-powered worm that can autonomously identify vulnerabilities, devise attack strategies, and replicate itself across networks. This new threat differs from traditional worms by adapting its tactics in real-time using large language models, rather than relying on fixed exploit code.

Font size

Advances in AI agents may be opening the door to a new cybersecurity threat: adaptive computer worms capable of generating attack strategies on the fly and spreading autonomously across networks, new research warns.

The paper, from researchers at the University of Toronto, Vector Institute, University of Cambridge, and ServiceNow, describes a proof-of-concept AI-powered worm that can identify vulnerabilities, devise tailored attack paths, compromise systems, and replicate itself across a network while adapting its tactics to different targets.

“We must prepare for autonomous generative adversaries,” the researchers wrote. “Malware systems that propagate without human operators and are defined not by fixed exploit code, but by the capacity to reason about targets, adapt to observations, and synthesize attack logic in real time.”

A computer worm is self-replicating malware that spreads automatically across vulnerable networks. Worm outbreaks, including the ILOVEYOU malware in 2000 and WannaCry in 2017, infected millions of computers worldwide, disrupting critical services and causing billions of dollars in damage.

More recently, the Shai-Hulud malware showed how self-propagating attacks can spread online, infecting software used by major companies, including OpenAI and Mistral.

According to the new study, researchers say what sets their AI-powered worm apart from earlier versions is its ability to adapt to different targets, using a large language model to identify vulnerabilities and generate attack strategies in real time rather than relying on a fixed set of exploits.

“Traditional worms, like WannaCry, exploited predetermined vulnerabilities, and their spread can be halted by patching those vulnerabilities,” they wrote. “Here we show that artificial intelligence agents enable a fundamentally new threat: a worm that generates tailored attack strategies to each target it encounters.”

In the study, the team tested the worm in an isolated virtual network containing 33 Linux, Windows, and IoT systems seeded with common vulnerabilities. Across 15 experiments, the worm identified an average of 31.3 vulnerabilities, successfully compromised 23.1 hosts, and spread to roughly 20 machines during seven days of autonomous operation.

In some tests, the study said the malware was able to reach seven generations of self-replication, and unlike many AI applications, the worm did not depend on access to AI cloud services.

Rather than relying on cloud infrastructure from providers such as AWS, Microsoft Azure, or Google Cloud, the malware ran AI models directly on compromised machines. As it spread, infected systems effectively became part of its computing infrastructure.

Researchers also found the system could exploit vulnerabilities disclosed after the model's training cutoff by ingesting newly published security advisories at runtime, allowing it to incorporate information that was not part of the model's original training data.

While the testing was conducted in a controlled environment, the authors acknowledged the dual-use nature of the work and intentionally withheld some technical details to reduce the risk of misuse.

“Ahead of releasing this preprint, we edited the manuscript to ensure that the presentation of our method balances the depth of detail needed for the community to study this novel threat with the risk of a malicious actor using our method for creating malware,” they said.

Despite this, the researchers said the project is intended to better understand the risks posed by adaptive computer worms and provide evidence of how far AI-enabled cyber capabilities have progressed.

“Addressing this threat will therefore require coordinated action across the research, security, industry, and policy communities: evaluation frameworks that test harness-level capabilities, detection systems tuned to the behavioural signatures of autonomous agents, and regulatory measures that account for the decentralized nature of open-weight inference,” they wrote.

What to Watch

AI outlook — possibilities, not facts

  • Development of new detection and defense systems specifically tuned for autonomous AI agents.

    Very likely · Within months

  • Increased focus on regulatory measures for AI development and deployment in cybersecurity.

    Likely · Within months

  • Potential for malicious actors to attempt to replicate or adapt the described AI worm.

    Very likely · Within weeks

Open Questions

  • What are the specific technical details of the AI models used?
  • How effective are current detection systems against such adaptive worms?
  • What regulatory measures are being considered or implemented globally?
  • What are the potential real-world impacts if such a worm were released?

Related Topics

This article was originally published by Decrypt.

Related Stories

More on this topicAI