This is a most excellent place for technology news and articles.
The attacker’s inexperience was also evident in his operational security failures. At one point he asked Claude to help edit his resume, which contained his full name, location, education history, and LinkedIn profile.
Later, while investigating a potential compromise of one of his own hosts, he inadvertently confirmed his home IP address to the agent. Based on this and other corroborating evidence, the researchers believe the attacker to be a young man based in Addis Ababa, Ethiopia.
Wow.
Wait until someone more skilled hacks the nuclear codes using AI and launches a few at US cities.
you need skills to type 0000-0000?
That’s the code for my luggage.
Doesn't help more skilled people. Just lowers floor.
I really hope all of that is air gapped.
It probably was before the current assholes decided Grok needs access.
script kiddies wrecking corporate security is funny
prompt kiddies doing it is just depressing
As someone who works in security, llms just make security happen or not happen faster.
I also work in security.
My company (which can damn well afford the costs) 100% REFUSES to leverage AI in any meaningful fashion. The CISO himself wrote the most braindead email to the CIO saying basically that AI isn't a threat and then showed it to the rest of us like he's proud of it.
I tried to push some adoption of AI based tools to help detect our own weaknesses and do some basic cleanup work. Nope. Stonewalled. I argued that every attacker is stealing accounts and burning tokens to tear us to shreds using every possible tools they can steal or even buy. We use Copilot.
Blank stares and crickets. We just keep managing our shit in spreadsheets that some dumbass emails as attachments and wonders why everyone has a different version of some useless thing.
At least they're paying me well. When they collapse in a little while, I suppose I won't be too surprised.
Didn't think I'd ever side with no script kiddie but at this point fuck it.
If your company can't even be bothered to do the bare minimum in security then yeah I hope the least skilled hacker ever comes along and wrecks it.
Thing is, with the latest frontier models, the least skilled person can find a crack in the most secure company around, as long as they can string a few sentences together.
It isn’t about “bare minimum” anymore. All it takes is a single lapse in vigilance from a single employee, and they’re in… and the LLM doesn’t have to pause to figure out what to do next.
Pentesters have access to LLMs too
some hacker unleashes malicious AIs to the internet, breaking it apart cause AI keeps finding vulnerabilities in everything and break things faster than humans can fix
corporates build corporate internet and the blackwall, which is AI to fight malicious AIs
Gooooood morning Night City!
And no-skilled attackers can buy exploits.
Claude helping is insignificant to the story.
The real headline should be:
At least 14 companies' IT security is practically non-existent
At least 14. *screams until hoarse in industrial cybersecurity researcher*
they fired hordes of tech people, and neglected cybersecurity in many companies. this was bound to happen.
We warned them but humans preach ignorance like gospel while pocketing dollars.
The IT Paradox :
Every time i go on holiday something breaks. It reminds my employer of how many fires I deal with he never notices
Make the hidden work seen
You have a good employer if he can recognize that your work in IT has added value
My takeaway from stories like this is that it was always really easy to crack in to companies, but most knowledgeable people had better things to do.
Most knowledgeable people are employed
My feeling is companies leave themselves open by allowing everyone access to the network so the idiot who has been told 50 times not to click on a link in a suspicious email will still do it or hand out passwords to anyone on the phone. Even if you run a tight ship you'll give access to some contractor who doesn't.
A poor IT department is working overtime with limited funds for staff trying to fix stuff while bosses breathing down their necks.
Alternative title: the ubiquitous race for cheapest developers and fastest time to maket leaves everything insecure.
I would love to see the term 'low-skilled' used more often within the context of LLM's and the manner in which people use them.
Bad look for Claude after their vigorous insistence their model can't be used this way.
Also bad look for the 50 people I get in my inbox telling me AI is completely useless every time I talk about it. These arguments were worthy of entertainment a few years ago but not in 2026.
What’s the use here? A random Ethiopian kid doxxing himself while “breaching companies”?
This article reads like yet another sensationalist advertisement for ai. How many people have supposedly now gained the ability to “breach dozens of companies” simply by typing “please” into a text box? Hundreds of millions? How is society still functioning if this is going on?
