Morris II: AI Worm Capable of Spreading Malware Using ChatGPT, Gemini

• Researchers reveal an AI worm capable of spreading malware via AI systems.
• This worm targets AI apps and AI-enabled email assistants that generate text and images using Large Language Models (LLMs)
• Moris II represents a significant evolution in malware, facilitated by AI development.

Researchers have tested Morris II, an AI-powered worm that infiltrates email systems to read content and disseminate malware without user interaction.

This new breed of “zero-click malware” poses a significant cybersecurity threat as it can deceive AI systems such as ChatGPT and Gemini into unauthorized actions.

Researchers Reveal “AI Worm”

Dubbed Morris II by researchers , the new AI worm is engineered to exploit vulnerabilities in AI-powered applications, particularly those utilizing popular tools like OpenAI’s ChatGPT and Google’s Gemini.

Ben Nassi from Cornell Tech, Stav Cohen from the Israel Institute of Technology, and Ron Bitton from Intuit created this worm to assess if attackers can develop malware to exploit the GenAI component of an agent to launch cyber-attacks.

The worm leverages these platforms to penetrate email assistants, siphoning off personal data and initiating spam campaigns. Its design allows it to bypass traditional cybersecurity measures that rely on user action to trigger malware infections.

Self-Replicating Mechanism Enhances Threat Level

One of the most alarming features of Morris II is its self-replicating capability, enabling it to spread autonomously across networks. This mechanism is activated by generative AI tools, which inadvertently facilitate the worm’s replication and malicious activities.

The researchers’ demonstration highlights the worm’s ability to infiltrate and leverage GenAI-powered email systems, showcasing its potential to execute widespread cyberattacks without direct human oversight.

The 1988 Moris Worm

Morris II, named after the infamous Morris worm , was devised by Cornell student Robert Morris in 1988. This early malware aimed to expose security flaws but created the first major internet attack.

“We are currently under attack,” wrote a University of California, Berkeley student.

Although intended as a demonstration, the programming error led to widespread network congestion and system failures, leading to Morris’s conviction under the Computer Fraud and Abuse Act.

White House Calls for Big Tech to Reduce Attack Surface in Cyberspace

The White House Office of the National Cyber Director released a report  in February 2024, calling on the technical community to reduce the attack surface in cyberspace.

“This report was created for engineers by engineers because we know they can make the architecture and design decisions about the building blocks they consume – and this will have a tremendous effect on our ability to reduce the threat surface, protect the digital ecosystem and ultimately, the Nation.” said Anjana Rajan, Assistant National Cyber Director for Technology Security.

Technology companies such as Microsoft, Apple, and OpenAI face increasing regulatory scrutiny as Big Tech continues to battle for AI dominance.

About the Author

Samantha Dunn

Samantha started as a traditional writer and journalist before falling down the Web3 rabbit hole. She now explores the ways in which emerging technology is impacting economies, industries, and the individual.

See more

[email protected]