Sign in / up

back to article Yes, criminals are using AI to vibe-code malware

With everyone from would-be developers to six-year-old kids jumping on the vibe coding bandwagon, it shouldn't be surprising that criminals like automated coding tools too. "Everybody's asking: Is vibe coding used in malware? And the answer, right now, is very likely yes," Kate Middagh, senior consulting director for Palo Alto …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. Paul Herber Silver badge

    What a Carry On

    "dangling attack"

    Sounds like something from Carry On Cyberattack Coding.

    Oo-er. you keep your danglies to yourself!

    11 0 Reply
  2. Anonymous Coward
    Anonymous Coward

    Hang on folks

    The brown roller coaster is just departing.

    Please keep your data inside the container at all times.

    3 0 Reply
  3. nobody who matters Silver badge

    Once again, it seems that the only area where the current fake AI is actually being useful, is in helping criminals.

    It is high time that these LLM malware are squashed, once and for all.

    11 1 Reply
    1. Rich 2 Silver badge
      Reply Icon
      Coat

      Yes, but it’s offset by all the useful things you can do with LLMs like ….errrr …. I’ll get back to you on that

      9 0 Reply
      1. m4r35n357 Silver badge
        Reply Icon

        I did read here a while back from some "experienced" devs who managed to save themselves a few valuable minutes here & there. So all good I think.

        2 0 Reply
      2. hedgie Bronze badge
        Reply Icon

        Hmm… They make tech bros and the power companies rich(er)! They help Nvidia sell even more hardware. They make it easier to under-pay people so those on top have even more money.

        Sorry, you didn't specify to whom they were useful.

        4 0 Reply
  4. cd Silver badge

    Good to see least-privilege addressed, been waiting.

    Next time you're having a coffee with her, ask if anyone has used an LLM to instruct another LLM to instruct another LLM to do an attack as of yet.

    5 0 Reply
  5. IceC0ld

    so it's SHIELD

    SHIELD stands for:

    S – Separation of Duties:

    H – Human in the Loop:

    I – Input/Output Validation:

    E – Enforce Security-Focused Helper Models:

    L – Least Agency:

    D – Defensive Technical Controls:

    what do you say to that ?

    I'd say someone REALLY wnated this to be called SHIELD :o)

    3 0 Reply
    1. EnviableOne Silver badge
      Reply Icon

      Catchier or more real than Strategic Homeland Intervention, Enforcement and Logistics Division"?

      0 0 Reply
  6. Madre O'Fender

    readme.txtt

    Ì was expecting Reamde.

    Excellent novel btw

    1 0 Reply
    1. hedgie Bronze badge
      Reply Icon

      Re: readme.txtt

      I did enjoy it, but found "The Fall: Or Dodge in Hell" far more interesting. Reamde was a good introduction to many of the characters, though.

      0 0 Reply
      1. EnviableOne Silver badge
        Reply Icon

        Re: readme.txtt

        Gone are the days they were called read.me

        0 0 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon