AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

AI as tradecraft: How threat actors operationalize AI

infonewsLLM-Specific

securitysafety

Source: Microsoft Security BlogMarch 6, 2026

Summary

Threat actors are using AI and language models as operational tools to speed up cyberattacks across all stages, from creating phishing emails to generating malware code, while human attackers maintain control over targeting and deployment decisions. Emerging experiments with agentic AI (where models make iterative decisions with minimal human input) suggest attackers may develop more adaptive and harder-to-detect tactics in the future. Microsoft reports disrupting thousands of fraudulent accounts and partnering with industry to counter AI-enabled threats through technical protections and responsible AI practices.

Classification

Attack Type

Prompt InjectionJailbreakModel Evasion

Attack SophisticationModerate

Affected Vendors

Microsoft

Related Issues

critical

CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-

Similar attackNVD/CVE Database

high

AI Kill Chain in Action: Devin AI Exposes Ports to the Internet with Prompt Injection

First tracked: March 6, 2026 at 03:00 PM

Classified by LLM (prompt v3) · confidence: 92%