AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

AI-generated Slopoly malware used in Interlock ransomware attack

mediumnewsLLM-Specific

security

Source: BleepingComputerMarch 12, 2026

Summary

Researchers discovered Slopoly, a backdoor malware (a hidden entry point into a system) likely created using an LLM (large language model, an AI trained on text data), that was deployed in ransomware attacks by the financially motivated group Hive0163. The malware uses a command-and-control framework (a central server that sends instructions to compromised systems) to steal data and maintain access, and its AI-generated code shows unusual features like detailed comments and clear variable names that are rare in human-written malware, suggesting that attackers are using AI tools to speed up custom malware creation.

Classification

Attack Type

Supply Chain

Attack SophisticationModerate

Impact (CIA+S)

integrityconfidentiality

Related Issues

high

Anthropic accuses Chinese AI labs of mining Claude as US debates AI chip exports

Similar attackTechCrunch

critical

CVE-2026-26190: Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus expose

Similar attackNVD/CVE Database

Original source: https://www.bleepingcomputer.com/news/security/ai-generated-slopoly-malware-used-in-interlock-ransomware-attack/

First tracked: March 12, 2026 at 08:00 PM

Classified by LLM (prompt v3) · confidence: 85%