The invention of PromptLock reveals how malicious use of AI fashions might supercharge ransomware and different threats<\/p>\n
![\"Anton](\"https:\/\/web-assets.esetstatic.com\/tn\/-x45\/wls\/2020\/03\/Anton_Cherepanov.jpg\")
<\/picture><\/a><\/div>\n![\"Peter](\"https:\/\/web-assets.esetstatic.com\/tn\/-x45\/wls\/2024\/11-2024\/eset-research.png\")
<\/picture><\/a><\/div>\n<\/div>\n\n 26 Aug 2025<\/span> ESET researchers have found what they known as “the primary recognized AI-powered ransomware”. The malware, which ESET has named PromptLock, has the power to exfiltrate, encrypt and presumably even destroy knowledge, although this final performance seems to not have been applied within the malware but.<\/p>\n Whereas PromptLock was not noticed in precise assaults and is as a substitute considered a proof-of-concept (PoC) or a piece in progress, ESET’s discovery reveals how malicious use of publicly-available AI instruments might supercharge ransomware and different pervasive cyberthreats.<\/p>\n <\/p><\/blockquote>\n \u201cThe PromptLock malware makes use of the gpt-oss-20b mannequin from OpenAI domestically by way of the Ollama API to generate malicious Lua scripts on the fly, which it then executes. PromptLock leverages Lua scripts generated from hard-coded prompts to enumerate the native filesystem, examine goal information, exfiltrate chosen knowledge, and carry out encryption,” stated ESET researchers.<\/p>\n “The PromptLock ransomware is written in Golang, and we’ve got recognized each Home windows and Linux variants uploaded to VirusTotal,” added the researchers. Golang is a extremely versatile, cross-platform programming language that has additionally gained recognition amongst malware authors in recent times.<\/p>\n AI fashions have made it kid’s play to craft convincing phishing messages<\/a>, in addition to deepfake photos<\/a>, audio<\/a> and video<\/a>. The prepared availability of those instruments additionally drastically lowers the barrier to entry for much less tech-savvy attackers, permitting them to punch above their weight.<\/p>\n In the meantime, the ransomware scourge has, through the years, examined the cyber-mettle<\/a> of numerous organizations, with such a malware additionally more and more deployed by APT teams<\/a>. As AI is already utilized by all sorts of menace actors<\/a> to various levels, it is also set to assist energy a rise within the quantity and affect of ransomware assaults.<\/p>\n
\n \u00a0\u2022\u00a0<\/span>
\n , <\/span>
\n 2 min. learn<\/span>\n <\/p>\n![\"First](\"https:\/\/web-assets.esetstatic.com\/tn\/-x266\/wls\/2025\/08-25\/ai-powered-ransomware.jpeg\")
<\/picture> <\/div>\n<\/div>\nCertain to occur<\/h3>\n