Friendly forums for passionate Dems!
More than 94 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»Help & Search»Computer Help and Support»Microsoft Flags AI-Driven...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News Editorials & Other Articles General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Computer Help and Support

Related: About this forum

Passages

(3,899 posts) Mon Sep 29, 2025, 08:39 AM Sep 29

Microsoft Flags AI-Driven Phishing: LLM-Crafted SVG Files Outsmart Email Security

Sep 29, 2025
Ravie Lakshmanan

Microsoft is calling attention to a new phishing campaign primarily aimed at U.S.-based organizations that has likely utilized code generated using large language models (LLMs) to obfuscate payloads and evade security defenses.

"Appearing to be aided by a large language model (LLM), the activity obfuscated its behavior within an SVG file, leveraging business terminology and a synthetic structure to disguise its malicious intent," the Microsoft Threat Intelligence team said in an analysis published last week.

The activity, detected on August 28, 2025, shows how threat actors are increasingly adopting artificial intelligence (AI) tools into their workflows, often with the goal of crafting more convincing phishing lures, automating malware obfuscation, and generating code that mimics legitimate content.

In the attack chain documented by the Windows maker, bad actors have been observed leveraging an already compromised business email account to send phishing messages to steal victims' credentials. The messages feature lure masquerading as a file-sharing notification to entice them into opening what ostensibly appears to be a PDF document, but, in reality, is a Scalable Vector Graphics (SVG) file.
https://thehackernews.com/2025/09/microsoft-flags-ai-driven-phishing-llm.html?_m=3n%2e009a%2e3785%2eqb0ao44uux%2e2tma

Be careful out there.

4 replies, 993 views
4 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
Microsoft Flags AI-Driven Phishing: LLM-Crafted SVG Files Outsmart Email Security (Original Post) Passages Sep 29 OP
Good to know. Thanks for posting. lastlib Sep 29 #1
Many, many years ago canetoad Sep 29 #2
We have to be guarded, no doubt about it. Passages Sep 29 #3
That is concerning jfz9580m Oct 31 #4

lastlib

(27,219 posts)
1. Good to know. Thanks for posting.
Reply to Passages (Original post)
Mon Sep 29, 2025, 10:05 AM
Sep 29

Be careful opening (or clicking on) unknown pdf files, folks!

canetoad

(19,890 posts)
2. Many, many years ago
Reply to Passages (Original post)
Mon Sep 29, 2025, 04:00 PM
Sep 29

There was an email hack/scam that involved a 1px by 1px transparent image file. So long ago that I can't remember the full details. Our mania for sharing images is going to get us in the end. SVG stands for Scalable Vector Graphic - such as Adobe Illustrator.

Thanks for posting this, it always pays to look out for stuff like this.

jfz9580m

(16,179 posts)
4. That is concerning
Reply to Passages (Original post)
Fri Oct 31, 2025, 05:51 AM
Oct 31

At first blush it can seem as if staying offline entirely is safer. But I have found that reality doesn’t work quite that predictably.
Being careful is key.

I have decided to start a new experiment. Anyway I am trying a private behavioral experiment starting from Oct 31, 2025. I have been slowly starting to organize my memory and fix my issues with concentration etc.
Unlike these creep types I like things to be non-chaotic.

I have two phones-a newer one that is only a year old and this one I have had for about a decade.
I am going to shift most of my bank work to my newer phone (over the next month) and mostly only browse science from that one (PubMed, wiki, science mags etc). On this one I’ll use my credit card (since there is an upper limit to the amount of damage you can do using my card alone) but do no other bank work. And browse DU, salon mag (on which I saw something a bit off today..a twitter link embedded) etc.

I don’t use those foul LLMs. But I do chat with an old and obscure European chatbot. I’ll be very formal and literal with it on my “non-trashy” phone.

And less formal (though not shitpost) on my “trashy” phone ie this one.

It isn’t that trashy but these tech creeps..technically one should just not use the web at all except for work. And I would be fine with that, but that’s too ocd. Best to separate the two out. I have relatively few apps on my phone compared to most people. Merlin the birding app, PlantNet, a puzzle game, DeepL, Protonmail and my banking apps. That’s about it.

With the license paragon, that foul NSO group and that creepy BlackCube get, I am surprised nothing has broken yet.

It will be interesting to see how it goes. I have always been strict about not tolerating privacy violations and today I back that even more. It’s why I use DDG.
Otoh again, it’s a mix. Nothing really guarantees safety online, but you do your best. Shrug.

Reply to this discussion
Latest Discussions»Help & Search»Computer Help and Support»Microsoft Flags AI-Driven...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2025 Democratic Underground, LLC. Thank you for visiting.