Researchers say credential-stealing campaign used AI to build evasion ‘at every stage’

Staff Editor 2026-05-14
Researchers say credential-stealing campaign used AI to build evasion ‘at every stage’

Researchers say credential-stealing campaign used AI to build evasion ‘at every stage’

https://cyberscoop.com/deepload-ai-malware-obfuscation-at-every-stage-reliaquest/

Publish Date: 2026-03-30 14:28:17

Source Domain: cyberscoop.com

Summary

A new malware campaign, dubbed “DeepLoad,” is exploiting advanced techniques, including artificial intelligence, to infiltrate and persist within enterprise IT environments, stealing credentials through various means including real-time keylogging. ReliaQuest AI’s analysis, by Thassanai McCabe and Andrew Currie, highlights the malware’s sophisticated obfuscation methods that can evade traditional security measures. The attackers employ social engineering techniques to deliver the malware, which burrows deeply into infected systems through heavy code padding and operating behind overlooked Windows processes. As the attackers show the capability to continually update their methods, experts warn that AI-driven obfuscation makes it hard for organizations to adapt their current static security practices. McCabe and Currie emphasize the need to shift focus towards behavioral, runtime detection to combat such evolving threats, suggesting that file-based scanning is becoming increasingly less effective against AI-enhanced cyberattacks.

Key Points:

  • DeepLoad uses AI to evade traditional security measures, turning user actions into persistent credential-stealing access.
  • The malware spreads through social engineering and employs sophisticated obfuscation techniques that likely involve AI.
  • DeepLoad persists even after security efforts to block it, spreading to connected USB drives and re-executing three days later even after cleanup.
  • Traditional static cybersecurity practices like signature-based detection may become obsolete as AI continues to create unique attack variations.
  • Experts recommend shifting focus to behavioral and runtime detection methods over file-based scanning to counteract these advanced threats.

More Stories

Project Glasswing: Key cybersecurity agencies set to get access to Anthropic’s Mythos | Business News

Project Glasswing: Key cybersecurity agencies set to get access to Anthropic’s Mythos | Business News

Staff Editor 2026-06-06
Did Insight’s New AI Cybersecurity Service and Credit Tweaks Just Reframe Insight Enterprises’ (NSIT) Growth Story?

Did Insight’s New AI Cybersecurity Service and Credit Tweaks Just Reframe Insight Enterprises’ (NSIT) Growth Story?

Staff Editor 2026-06-06
OpenAI Introduces Lockdown Mode To Combat AI Data Exfiltration Risks Amid Growing Prompt Injection Threats

OpenAI Introduces Lockdown Mode To Combat AI Data Exfiltration Risks Amid Growing Prompt Injection Threats

Staff Editor 2026-06-06

You may have missed

White House AI adviser to leave position as Trump weighs stakes in AI firms

White House AI adviser to leave position as Trump weighs stakes in AI firms

Staff Editor 2026-06-06
Project Glasswing: Key cybersecurity agencies set to get access to Anthropic’s Mythos | Business News

Project Glasswing: Key cybersecurity agencies set to get access to Anthropic’s Mythos | Business News

Staff Editor 2026-06-06
Did Insight’s New AI Cybersecurity Service and Credit Tweaks Just Reframe Insight Enterprises’ (NSIT) Growth Story?

Did Insight’s New AI Cybersecurity Service and Credit Tweaks Just Reframe Insight Enterprises’ (NSIT) Growth Story?

Staff Editor 2026-06-06
Public ownership in AI: Trump and Sanders find common ground

Public ownership in AI: Trump and Sanders find common ground

Staff Editor 2026-06-06
‘Complete hypocrite:’ Mamdani-backed Congress candidate slams billionaires and AI industry while raking in their cash

‘Complete hypocrite:’ Mamdani-backed Congress candidate slams billionaires and AI industry while raking in their cash

Staff Editor 2026-06-06

Terms and Conditions - Privacy Policy