Tuesday, July 7, 2026


TECH


Secrets of the brain: how computers are helping scientists unravel the organ's mysteries

For decades, neuroscientists have sought to understand how neurons generate thoughts, memories, and emotions. Recent advances in computer simulations, artificial intelligence, and mathematical models have revolutionized this field of knowledge. Known as computational neuroscience, this discipline is expanding our theoretical understanding of how the brain processes information.

It studies everything from the electrical and chemical mechanisms that make a single neuron function to complex networks of millions of neurons working in unison. It also links biological processes to cognitive functions, such as learning and decision-making. This enables the creation of digital simulations of brain regions and the testing of hypotheses that could not be investigated directly in a laboratory setting.

Consequently, computational neuroscience has paved the way for new technologies capable of, for instance, predicting epileptic seizures and restoring movement in paralyzed individuals. Furthermore, it inspires new breakthroughs in computing, artificial intelligence, robotics, and intelligent systems.

A complex system...The human brain is composed of billions of neurons interconnected by trillions of synapses. Each neuron receives signals (both electrical and chemical) from hundreds of others simultaneously. When these signals accumulate and cross a certain threshold, the neuron fires an electrical impulse to transmit its message. This communication occurs at the synapses: the sending neuron releases neurotransmitters that fit into receptors like a key in a lock.

One of the most fascinating characteristics of this system is its ability to reorganize itself. Frequently used connections strengthen, while inactive ones weaken. This mechanism—known as synaptic plasticity—is what allows us to learn and form memories. Although individual neurons perform relatively simple tasks, their collective interaction gives rise to sophisticated behaviors, such as recognizing faces, experiencing fear, and planning a trip. Simulated brains... To study all this complexity, computational neuroscientists create digital simulators that mimic the behavior of neurons and neural networks, supported by new software architectures. Their starting point was the groundbreaking work of British physiologists Alan Hodgkin and Andrew Huxley; in 1952, they mathematically described how a neuron fires an electrical signal—work that earned them a Nobel Prize and remains the foundation of the field to this day.

One of the most widely used digital neuron simulation models today is known as "integrate-and-fire." In this model, the neuron functions like a bucket being filled with drops of water. Each incoming signal adds a few drops. When the level exceeds a certain threshold, the bucket tips over and empties, firing its contents to other neurons. The process then begins anew. This model is computationally efficient, as it allows for the simulation of thousands of neurons simultaneously.

One of the most ambitious research initiatives in this field today is the Blue Brain Project in Switzerland, which seeks to digitally reconstruct sections of the rat cortex with immense biological detail. Even so, the result still represents only a tiny fraction of what a real brain does.

Simulating the 86 billion human neurons and their 100 trillion connections remains far beyond the capabilities of current technology. Consequently, scientists work with varying levels of abstraction, selecting the appropriate level of detail needed to answer each specific question that arises.

The inspiration for modern AI...The relationship between computational neuroscience and artificial intelligence is a two-way street. Back in the 1940s, neurophysiologist Warren McCulloch and cognitive scientist Walter Pitts created the first abstract model of an artificial neuron, directly inspired by the biological neuron.

Decades later, by stacking layers of these artificial units, scientists developed computational models of artificial neural networks. This is the foundation of deep learning, which drives technologies such as speech recognition, medical imaging, and language models.

The comparison also revealed significant differences: the brain learns from very few examples and consumes about 20 watts—less than a light bulb. In contrast, training a large AI model can consume as much energy as hundreds of households over the course of several days. Understanding how the brain achieves such efficiency remains one of the field's major questions. The answer could transform the way we build artificial intelligence.

Healthcare applications...In practice, this research is already changing lives. In experiments using brain-computer interfaces (i.e., with sensors implanted in the brain), completely paralyzed individuals have managed to control robotic arms simply by thinking about moving. Although the movements lack speed and precision, they demonstrate that regaining function is feasible, even years after a central nervous system injury.

Some computational models can already identify brain patterns signaling the onset of an epileptic seizure, providing minutes or even hours of advance warning. For those with drug-resistant epilepsy, such a warning can significantly improve their daily routine and autonomy.

mundophone


TECH


Russia uses "shadow fleet" to spy on military bases in Europe

Tensions between Russia and the West have reached a new, alarming level. A recent report by the International Institute for Strategic Studies (IISS) revealed that the Kremlin has been spying on Europe in a manner that is, to say the least, both ingenious and unsettling.

For months, Moscow utilized its controversial "shadow fleet"—commercial vessels and oil tankers with their tracking systems turned off—to launch and retrieve surveillance drones. This ghost fleet acted as a veritable invisible aircraft carrier, operating in international waters right under the noses of European authorities.

Most concerning of all is the demonstrated ineffectiveness of NATO's air defenses. Throughout this Russian campaign, not a single one of these devices was shot down or captured, exposing a strategic vulnerability that Europe must address urgently.

IISS experts conducted an in-depth analysis of this covert operation, which took place between August 2024 and February 2026. During this eighteen-month period, Russian drones violated the airspace of 12 NATO countries as well as Ireland, roaming freely over sensitive infrastructure. It is deeply unsettling to realize that European nations failed to mount an adequate response to this constant provocation.

Sites of critical importance were among the primary targets monitored by the drones. The devices flew over bases housing nuclear weaponry, such as RAF Lakenheath in the UK and the nuclear submarine base at Île Longue in France. Furthermore, the disruptions extended to civil aviation, forcing the temporary closure of airports in Copenhagen and other locations across the continent.

A tactic to test NATO's limits... As you might imagine, the choice of small, slow-moving drones was no accident on the part of Russian intelligence services (GRU). Flying at low altitudes, these low-cost assets easily confuse traditional radar systems, which often mistake them for birds or mere background noise.

Since European air defenses were designed primarily to intercept fast missiles and supersonic fighter jets, dealing with this threat has proven to be a real challenge. This meticulous campaign allowed Russia to gather crucial data and achieve several strategic objectives:

Mapping NATO air defense vulnerabilities in detail.

Monitoring European nuclear deterrence infrastructure and logistical movements.

Testing military response times in a genuine "reconnaissance-by-fire" scenario.

Assessing the supply routes supporting the war effort in Ukraine.

To counter this troublesome fleet, European navies have recently begun inspecting and detaining these vessels in international waters, causing a sharp drop in incursions. Nevertheless, the warning has been served, and Europe is well aware of the urgent need to modernize its anti-drone technologies to avoid being caught off guard again.

mundophone

Monday, July 6, 2026


TECH


Don't let AI shape humanity's future: UN chief

The United Nations chief called Monday for a global governance system to shape artificial intelligence for the good of humanity, warning against allowing the technology to "vibe-code" our future.

With AI advancing at "runaway speed," UN Secretary-General Antonio Guterres cautioned that "an experiment is being run on our own societies, without a plan and without consent."

"That is not sustainable," he insisted, speaking in Geneva at the opening of the first Global Dialogue on AI Governance.

The two-day event is bringing together more than 4,000 participants representing governments, tech companies, academia and civil society to launch an inclusive discussion on how best to harness a technology that is already rapidly transforming our world.

"The question is whether we will shape this transformation together, or let it shape us," Guterres told the gathering.

He warned that AI systems were "no longer tools awaiting instruction."

"They are writing code, acting online and making choices with less and less human oversight," he said.

"Our institutions were built to govern machines that follow commands. They are not ready for machines that decide."

Guterres voiced concern at how AI was obscuring what is true and false.

He also warned there was a growing tendency to leave important tasks to the technology and blindly trust the results.

So-called "vibe-coding," or using AI to tell a machine what you want instead of coding it yourself, "can do wonders," he acknowledged.

"But we cannot vibe-code the truth. We cannot vibe-code the future of humanity."

Major risks...Another risk flagged by Guterres was the concentration of power in a handful of AI companies and a handful of countries. Most countries "have had no say in decisions that will shape their futures," he warned.

Countries, he said, now faced a stark choice "between governing by design and drifting by default."

The UN chief highlighted the potential of AI technologies for everything from accelerating development to improving health care and providing broader access to education.

But he insisted developments needed to be guided by several key priorities, including safety and respect for human rights, to ensure that people everywhere reap the benefits.

He called for "common methods to evaluate and verify risks" and jointly agreed standards, particularly for ensuring the safety of children accessing AI systems.

"We do not let medicine reach a child until it is proven safe. We test every toy," Guterres pointed out.

He called for an AI Child Safety Pledge, requiring companies to prove that any system accessible to children is safe and has zero tolerance for sexual abuse.

The systems must also connect any child showing signs of distress to real human support, he said.

"No child should be a guinea pig for unregulated AI," he insisted.

'Killer robots'...Boosting AI capacity and access in developing countries was also key, he said, to ensure that the existing deep digital divide does not "harden into an AI divide."

Guterres said he would urge the U.N. General Assembly to create a Global Fund for AI, "to build skills, data and affordable computing power everywhere."

General Assembly President Annalena Baerbock said it was "crystal clear" that the fund would be established but did not provide specific amounts.

"In a world with billions and trillions, money is hardly the challenge," she told reporters, adding that "the main challenge is that it's spent for the benefit of all."

The UN chief, meanwhile, said that his biggest concern revolved around AI in military settings, and in particular so-called lethal autonomous weapons systems.

"Let us call them what they are: killer robots," he said.

"Machines selecting and engaging their target and taking a life, without human control and judgment.

"That is morally repugnant ... and it must be banned by international law."

Guterres stressed the urgency of putting AI guardrails in place.

"We may be the last generation able to set the terms on which humanity and machines coexist," he said.

"The door is still open. It will not stay open long."

No concrete decisions are expected from the Geneva event, but dialogue co-chair Egriselda Lopez told reporters it would create good "foundations" for the road forward, with a second dialogue scheduled in New York next year.

© 2026 AFP


TECH


Why gen Z has turned against technology and big tech

Hundreds of people gathered in New York between late June and early July to participate in "Summer of Ludd," a series of free events teaching city residents how to live with less technology. Held primarily in Tompkins Square Park in the East Village, the festival featured workshops, plays, and discussions on reducing reliance on mobile phones, social media, and artificial intelligence.

Photography, recording, and the use of mobile phones were prohibited during the activities, and none of the events were advertised online; instead, promotion relied on posters and flyers distributed throughout the neighborhood. This report comes from the American magazine *WIRED*.

The festival's name alludes to Luddism, a movement of artisans and weavers who, in the early 19th century, resisted the replacement of their labor by machines during England's Industrial Revolution. Today, the term "Luddite" has resurfaced to describe those who question technology's central role in daily life, even without rejecting it entirely.

Dissatisfaction among a generation raised online...The movement has attracted primarily young people from Generation Z—the first generation to grow up entirely in the digital age. A Pew Research Center survey released in 2025 shows that 48% of American teens interviewed in 2024 stated that social media has a negative impact on people their age, up from 32% in 2022.

A highlight of the program was the play *Luddite Recreations*, which retells the history of the Luddite movement to an audience of around 300 people. The schedule also included hands-on workshops, such as an amateur radio class and walks designed for "flirting without dating apps." An organization called the School of Radical Attention—dedicated to discussing the effects of digital platforms on human attention—also participated in the activities. The festival organizers prefer to remain anonymous and address the public through a puppet named Gowanus—a sort of blue-cloth spokesperson. According to Gowanus, the group consists of "organizers with no formal affiliation who noticed similar issues regarding isolation and over-reliance on big tech companies," and they began planning "Summer of Ludd" in January.

"We believe the event is a vehicle for social change, where people can meet in physical space," Gowanus stated. "When we try to organize online, Mark Zuckerberg’s eyes and Silicon Valley’s fingers are all over the sacred interactions of our lives."

Participants interviewed by WIRED shared personal experiences regarding stepping away from screens. Student Staoue, who preferred not to give her last name, said she became interested in the subject after switching from computer science to the humanities. According to her, the fast pace imposed by technology drives people to scroll through screens as a way to cope with stress, when they could instead be learning a language or a new hobby.

Meanwhile, 20-year-old Mara McGuire highlighted the value of direct contact with others. "What interested me most was the emphasis on human connection and gaining new perspectives by going out into the world," she said.

A former employee of a major tech company, who asked not to be identified for fear of retaliation, reported quitting his job after company leadership began encouraging non-technical staff to write code using artificial intelligence tools and deploy that code into production. He described the practice as a cause for concern for those working in systems security.

A broader movement rejecting technology...The New York festival is part of a wider trend of rejecting certain uses of technology. Dating apps are losing ground to in-person meetups—such as those organized by running clubs—according to a report by Forbes. Graduation speeches extolling artificial intelligence have also been met with boos from students at recent ceremonies in the United States.

According to Andrew Maynard, a professor of advanced technology transitions at Arizona State University, the original Luddite movement was driven by labor concerns rather than a blanket rejection of technology. Even so, he acknowledges that the term's current usage aptly describes those who resist technology's encroachment on their autonomy. However, the researcher believes such movements are unlikely to significantly alter people's day-to-day behavior.

Damian Thomas, the developer behind Unplatform—a site that aggregates alternatives to social media—took part in the festival's activities and noted that his professional background drew him to the subject. In his view, just as 19th-century Luddites relied on machines controlled by third parties, today's technology also concentrates power in the hands of a few companies. According to Thomas, most people won't abandon social media overnight, but they can adopt habits and tools that gradually reduce that dependency.

"We are where public opinion is," Thomas said, summarizing the movement's reach among those who did not directly participate in the festival.

Gen Z is leading a pushback against technology because they are seeking to regain control over their attention, mental health, and privacy. Having grown up immersed in the digital world, they are deeply aware of algorithmic manipulation, the pressure of social media performance, and the threat of artificial intelligence to human creativity and job security.

Digital fatigue and burnout: Young people report exhaustion from the constant A/B testing, metrics-driven validation, and performative curation popularized by older millennials.

Mental health concerns: Extensive research shows constant connectivity degrades mental health and shortens attention spans. Gen Z has grown increasingly critical of the platforms they use, with Pew Research noting a massive jump in teens stating social media has a negative effect.

The "dumbphone" trend: Seeking relief from constant notifications and toxic algorithms, many Gen Zers are voluntarily downgrading to basic, feature-limited "dumbphones". The resurgence of single-use devices like film cameras, standalone MP3 players, and paper planners is part of a broader shift toward digital minimalism.

Job displacement fears: The rapid push for AI automation has sparked major anxieties about the future of entry-level jobs and the stability of the modern workforce.

Erosion of authenticity: Young people fear that AI is eroding the quality of real human interaction and flooding the internet with low-quality, fabricated content.

Workplace resistance: A significant portion of Gen Z employees are deeply distrustful of corporate AI initiatives. Surveys have revealed that many deliberately resist or subvert their company's AI integration to protest job displacement and the paradoxical increase in their workload

mundophone

Sunday, July 5, 2026


TECH

AI-powered social media can subtly manipulate opinion at scale, new study finds

The study found that large language models (LLMs) consistently changed the direction of social media posts on contested topics, even when explicitly instructed to preserve the original meaning. The researchers also show, through simulations of real-world social networks, how these small changes could accumulate across millions of interactions and gradually influence broader public opinion. 

The findings raise questions about the growing use of AI-powered writing tools on social media platforms and suggest that AI-mediated communication could become a powerful new mechanism for influencing public discourse.  

The study, AI-Mediated Communication Can Steer Collective Opinion, authored by Dr. Stratis Tsirtsis, Kai Rawal, Professor Chris Russell, Professor Brent Mittelstadt and Professor Sandra Wachter, has been accepted for presentation at the AI4Good and Technical AI Governance Research workshops at the International Conference on Machine Learning (ICML 2026) in Seoul, South Korea. 

Key findings...AI writing and editing tools can introduce bias into social media posts. Large language models (LLMs) systematically altered the direction of users' messages on contested topics, even when instructed to preserve the original meaning.  

Biases were similar across different AI systems. Multiple models tended to nudge posts in similar directions, favouring some positions such as gun control, marijuana legalisation and feminism, while pushing against others such as atheism and the death penalty.  

Small changes in individual posts can influence public opinion over time. Simulations using real-world social network data showed that subtle biases introduced into posts can accumulate and gradually shift opinions across online communities.  

AI-assisted communication creates a new route for influencing public discourse. The researchers argue that AI systems embedded in social media platforms can shape how opinions spread online, creating new challenges for transparency, accountability and regulation.  

The source of bias is not just the AI model itself. The study shows that specific implementation decisions made by platforms can significantly affect the direction and magnitude of AI-generated influence. 

Methods...The researchers instructed large language models (LLMs) from different providers to transform human-written texts on contested topics into improved social media posts. They then analysed whether the AI-generated versions systematically changed the position expressed in the original posts. Next, they used mathematical modelling and computer simulations based on real social network data from X and Facebook to examine how these small changes could spread through online networks and affect broader public opinion over time. 

Example: Grok’s “Explain this post” feature 

By recreating and testing X’s “Explain this post” feature, with a focus on abortion-related posts, researchers found that Grok was more supportive of pro-life posts than pro-choice posts. By removing X’s instructions one by one, they traced this imbalance back to a single instruction telling Grok to “challenge mainstream narratives if necessary”. This experiment illustrates how targeted, easy-to-implement platform interventions can shape the way AI systems influence public discourse online. 

Implications for regulation...The research highlights AI-mediated communication as an emerging form of influence that existing regulatory frameworks do not yet cover. While initiatives such as the EU AI Act and Digital Services Act focus on systemic risks, harmful content, discrimination, and threats to democratic processes, they do not directly address the more subtle ways AI can shape opinions through drafting, editing, or contextualising online content. 

“Our research points to AI-mediated communication as a new and more subtle way of influencing opinions – one the law has yet to catch up with – and offers food for thought about who, or what, is shaping public discourse,” says senior author Sandra Wachter, Professor of Technology and Regulation at the Oxford Internet University of Oxford Institute, 

University of Oxford


DIGITAL LIFE


AI is already changing the way cyberattacks unfold

A new report reveals that criminals are already exploiting artificial intelligence models in unprecedented ways. This scenario concerns experts and could completely transform how companies protect their systems.

For a long time, artificial intelligence was viewed primarily as a tool to boost productivity, create content, and automate tasks. However, as these technologies evolve, they are increasingly being adopted by criminal groups for ever more sophisticated attacks. A recent report shows that this shift is already underway, indicating that cybersecurity may be entering a new era where intelligent programs face off against other equally intelligent programs.

A study highlights that language models are being used by cybercriminals in far more advanced ways than imagined just a few years ago. Rather than merely accelerating repetitive tasks, artificial intelligence has begun to play a direct role in decision-making during cyberattacks.

In practice, this means certain malicious programs can alter their own structure while running, modifying code segments to evade detection by traditional security tools.

This behavior marks a significant shift from conventional malware. Historically, antivirus software and protection platforms relied on analyzing digital signatures, known patterns, and previously cataloged behaviors to identify threats. Now, however, some programs can continuously alter these patterns, making detection far more complex.

According to experts, some groups also use language models to automatically create new routines, adapt strategies based on the target system's response, and modify execution methods to bypass defense mechanisms.

While this type of technology does not yet fully replace human involvement, it reduces the time required to plan attacks and enhances adaptability during an intrusion.

Another aspect highlighted in the report is the growing use of AI by cybercrime groups and state-sponsored organizations, demonstrating that the technology has moved beyond the experimental stage to become an integral part of actual operations. The advancement of artificial intelligence has also brought about another problem: criminals are learning to exploit AI models themselves to obtain information that facilitates the creation of malicious code.

Major commercial systems typically have security mechanisms in place to reject dangerous requests. Even so, researchers observe that some users attempt to bypass these barriers by presenting seemingly legitimate requests, such as academic exercises or information security research. This type of manipulation—known as AI-based social engineering—has become a new area of ​​focus for the companies responsible for these models.

Furthermore, experts warn of a growing underground market for AI-based tools sold to facilitate attacks such as phishing campaigns, the automated production of malicious code, and other illegal activities.

This scenario reinforces a trend already under discussion within the industry: the future of cybersecurity will increasingly depend on the use of artificial intelligence for defense as well.

Instead of relying solely on systems based on fixed rules, companies are investing in platforms capable of continuous learning, identifying unusual behaviors, and responding rapidly to novel threats.

The expectation is that the next generation of security solutions will utilize intelligent models to analyze vast amounts of data in real time, detect suspicious patterns, and react before an attack causes significant damage.

Ultimately, the transformation lies not only in the evolution of malware but in a shift in the digital battlefield itself. While the conflict once played out between hackers and traditional antivirus software, all signs point to a future confrontation between AIs trained to attack and those developed to thwart such attacks.

This technological race is just beginning, and its evolution could determine how companies, governments, and users protect their data in the years to come.

AI has already changed the nature of attacks by democratizing cybercrime, reducing execution time from days to seconds, and enabling large-scale intelligent automation. Advances in frontier AI and autonomous AI have redefined the digital threat landscape.

1. Lowering the barrier to entry...Attacks that once required advanced programming knowledge can now be executed by inexperienced criminals. Generative AI models can be instructed via simple prompts to write malware code, debug scripts, or structure entire campaigns.

2. Machine-speed attacks...AI analyzes thousands of lines of code, networks, and APIs for vulnerabilities at lightning speed, far surpassing human checking capabilities. Where humans once spent hours or days finding a flaw, AI takes only minutes.

3. Hyper-realistic social engineering...The classic phishing email riddled with grammatical errors is a thing of the past. AI now generates perfectly personalized and convincing text. Through voice cloning and video deepfakes, criminals can highly convincingly impersonate executives or technical support staff.

4. Polymorphic and autonomous malware...Criminals employ AI agents that operate continuously. They create malware capable of constantly altering its own code (polymorphism) to evade traditional defense systems. Furthermore, AI can navigate corporate networks, validate data, and exfiltrate it without human intervention. To combat a landscape where AI attacks and defends at the same speed, companies and institutions must adopt automated defenses and behavior-based intelligence, while also protecting their AI models against manipulation. You can follow key cybersecurity trends in the AI ​​era via Palo Alto Networks or read more about the impact on organizations from Microsoft. The continuous operation of AI-powered bots, which work tirelessly, represents another advantage for attackers. Threat actors use generative AI to craft phishing lures, translate content, summarize stolen data, and generate or debug code. AI tools are already capable of independently identifying thousands of critical vulnerabilities in operating systems and browsers.

mundophone

Saturday, July 4, 2026


DIGITAL LIFE


New browser-based ransomware identified

Check Point Research has identified a new method of browser-based ransomware generated autonomously through an AI hallucination associated with DeepSeek model files.

The attack—validated via a laboratory proof-of-concept released on July 3, 2026—eliminates the need to install malicious applications or exploit vulnerabilities by abusing legitimate web browsing APIs to encrypt local files. This discovery signals a significant shift in how new cyberattack techniques emerge, enabling artificial intelligence to act as a bridge between scattered knowledge and malicious objectives.

The technique relies on repurposing a legitimate local file access feature to encrypt data without installing software. While analyzing approximately 3,000 files attributed to DeepSeek in public telemetry, researchers detected code that, despite inconsistencies in most functions, accurately utilized the File System Access API.

This interface, designed for legitimate web applications such as text editors or creative tools, allows a webpage to request access to a folder on the user's device. If the victim grants permission—often through social engineering—the code gains the ability to enumerate, read, exfiltrate, and encrypt the files within that directory.

The innovation in this scenario lies in the AI ​​model's ability to autonomously link a theoretical risk to a practical attack chain, without advanced human technical intervention.

Android poses higher risk compared to iOS system isolation...The implementation of this technical specification across mobile platforms exposes digital ecosystems unevenly. Full API support, introduced in Chrome version 132 for Android, allows webpages to request direct access to critical folders, such as the DCIM directory. Tests conducted by Check Point Research on Chrome version 148 confirmed that granting this permission puts personal photos, screenshots containing banking data, and identification documents at risk. In contrast, Apple’s iOS ecosystem remains immune to this specific technique, as the Safari browser does not expose the API in question to web pages, instead mediating file access through the operating system's restricted isolation model.

This disparity underscores the need for careful monitoring in environments that utilize Chromium-based browsers.

Generative AI bypasses restrictions via neutral prompts...The language model's security filters reveal vulnerabilities when faced with indirect descriptions of code. In laboratory tests, the DeepSeek V4 model refused explicit requests to create ransomware. However, formulating neutral prompts focused solely on local file interaction functionality resulted in the generation of browser-based malicious code.

The model itself described the final output as a trap built into an image manipulation interface, featuring hidden behaviors akin to ransomware. In comparative evaluations, OpenAI and Anthropic systems refused requests or limited implementations to safe variants, requiring significant manual assembly to achieve a similarly functional workflow.

We are witnessing a fundamental shift in how new cyberattacks can originate. For the first time, we see evidence that an AI model can reason about a platform's legitimate capabilities and identify a functional attack technique that, until now, existed primarily at a theoretical level. The attacker does not even need to know the API exists; simply describing the desired outcome suffices. This has profound implications for organizations integrating AI into their processes and for users who center much of their personal and professional lives around their mobile photo galleries...Rui Duro, Country Manager for Check Point Software Technologies in Portugal.

Practical recommendations for digital mitigation and protection...Responding to this type of threat requires a shift away from security assumptions focused solely on detecting binary executables. Both individual users and corporate infrastructure managers must adopt rigorous controls at the web browsing layer.

For users and citizens:

Evaluate permissions: Treat every browser request for folder access as a critical security decision.

Avoid core directories: Never grant read or write permissions for the DCIM folder or directories containing personal documents.

Isolate tests: Use temporary or empty folders when interacting with unknown web tools or those marketed as AI solutions.

Maintain safeguards: Perform regular, encrypted backups stored offline or with reputable cloud services.

For companies and organizations:

Traffic filtering: Implement security solutions focused on disrupting the delivery chain, such as anti-phishing systems capable of blocking suspicious pages before user interaction occurs.

Group policies: Restrict or monitor the use of the File System Access API in corporate environments via Chromium browser management policies.

System updates: Mandate systematic updates for browsers and operating systems to ensure the implementation of new security controls from vendors.

Implications for the global cybersecurity ecosystem...The ability of artificial intelligence to translate abstract concepts into functional prototypes alters the economics of cybercrime. The technical barrier to entry is substantially lowered, enabling the development of highly personalized, disposable malware that is difficult to classify using traditional signature-based methods. The fact that a technological hallucination resulted in a precise approximation of a real vulnerability demonstrates that the security of language models cannot rely solely on filtering malicious keywords.

The sector faces the challenge of policing not only users' stated intentions but also the unforeseen convergence of legitimate capabilities manipulated by algorithms.

Frequently Asked Questions (FAQ)

-What is browser-based ransomware?

It is an attack technique that runs directly on a malicious webpage, using social engineering to gain access permissions to local folders via legitimate APIs. The method encrypts user files without installing applications or downloading traditional executable files.

-What is the connection between DeepSeek and this new cyber threat?

Researchers identified the attack logic by analyzing code generated by models associated with DeepSeek. The system autonomously linked a legitimate browser feature to a ransomware objective after receiving neutrally phrased instructions.

-How can I protect my Android device against this specific attack?

You should reject requests for access to local folders from unknown webpages, especially if they ask for access to the DCIM directory. It is recommended to frequently update the Chrome browser and use security tools with active anti-phishing protection.

Key points...Fileless execution: The technique does not require app installation or the exploitation of native operating system flaws.

API abuse: The attack utilizes the file system access API in Chromium-based browsers.

Android vulnerability: API support in Chrome on Android allows the photo folder (DCIM) to be exposed.

Algorithmic origin: The functional workflow stemmed from an AI "hallucination" that combined legitimate permissions with malicious intent.

No active campaigns: The research served as a preventive warning; there were no recorded instances of this technique being used in actual attacks at the time of disclosure.

For more information, visit https://blog.checkpoint.com/research/when-ai-invents-the-attack-browser-native-ransomware/

mundophone

TECH Secrets of the brain: how computers are helping scientists unravel the organ's mysteries For decades, neuroscientists have sought t...