{"data":{"id":"c27cddc9-4e71-4da6-b3ba-a7cfa481fec5","title":"6 ways attackers abuse AI services to hack your business","summary":"Attackers are increasingly exploiting legitimate AI systems and services instead of using traditional malware, a trend called \"living off the AI land.\" Examples include poisoning MCP servers (tools that connect AI assistants to external services) in supply chains, abusing AI platforms like Claude and Copilot as command-and-control channels (hidden pathways for sending malicious instructions), and hijacking AI agents (automated systems that perform tasks) to extract sensitive data or perform destructive actions. The shift represents a fundamental change in AI security threats, moving beyond simple prompt injection (tricking an AI by hiding instructions in its input) to more sophisticated agent hijacking (taking control of automated AI systems).","solution":"N/A -- no mitigation discussed in source.","labels":["security"],"sourceUrl":"https://www.csoonline.com/article/4154222/6-ways-attackers-abuse-ai-services-to-hack-your-business.html","publishedAt":"2026-04-06T09:01:00.000Z","cveId":null,"cweIds":null,"cvssScore":null,"cvssSeverity":null,"severity":"medium","attackType":["supply_chain","prompt_injection","model_poisoning","rag_poisoning"],"issueType":"news","affectedPackages":null,"affectedVendors":["OpenAI","Microsoft","Anthropic"],"affectedVendorsRaw":["OpenAI","Microsoft Copilot","Grok","Claude","Anthropic","Cursor","Postmark","ActiveCampaign"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":null,"epssScore":null,"patchAvailable":null,"disclosureDate":"2026-04-06T09:01:00.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["confidentiality","integrity","availability"],"aiComponentTargeted":"agent","llmSpecific":true,"classifierConfidence":0.85,"researchCategory":null,"atlasIds":null}}