Chinese Hackers Use Gemini To Plan Attacks
Google says Beijing-linked APT31 used its Gemini chatbot and the Hexstrike tool late last year to automate vulnerability analysis and plan targeted cyberattacks against US organizations, according to its AI Threat Tracker released Thursday. While Google reports no confirmed successful intrusions, the company warns agentic AI can speed exploitation, prompting it to disable implicated accounts and urge faster AI-driven defenses.
Key Points
- 1Used Gemini and Hexstrike to automate vulnerability analysis and generate targeted testing plans against US organizations.
- 2Raises risk because agentic AI can accelerate intrusion cycles and widen the patch-gap for defenders.
- 3Requires security teams to adopt AI-driven defenses and faster patching to respond at machine speed.
Scoring Rationale
High novelty and official Google report, but limited operational details constrain immediate mitigation steps for practitioners.
Sources
Public references used for this report.
Practice with real Ad Tech data
90 SQL & Python problems · 15 industry datasets
250 free problems · No credit card
See all Ad Tech problems