0xensec Daily Roundup — March 14, 2026
The cybersecurity landscape witnessed further evidence this week that AI is reshaping both the capabilities of attackers and defenders. In a high-profile incident, researchers from IBM X-Force revealed that Hive0163, a financially motivated threat cluster, has orchestrated ransomware campaigns using AI-assisted malware dubbed Slopoly. Analysis suggests large language models (LLMs) contributed to code generation—a trend that dramatically lowers the cost and development time for sophisticated, ephemeral attack frameworks. Slopoly, primarily a PowerShell backdoor, enables persistent system control, command execution, and forms part of a malware ecosystem interlinked with tools like NodeSnake and InterlockRAT.[1][29]
Read more →