AI – Driven Cyber Threats Surge: Dark Web Weapons Upgrade, Global Security Posture Faces Severe Challenges in 2025

AI – Driven Cyber Threats Surge: Dark Web Weapons Upgrade, Global Security Posture Faces Severe Challenges in 2025

As of mid – May 2025, many global cybersecurity institutions have successively disclosed several high – threat cyber – attack incidents involving artificial intelligence technology. With the acceleration of AI technology’s popularization, the iterative upgrade of cyber – crime means is worrying. Kaspersky’s discovery rings the alarm. Since November 2023, attackers have continuously launched supply – chain attacks against the Python Package Index (PyPI). By disguising as projects related to OpenAI’s GPT – 4 Turbo and Anthropic’s Claude AI, they injected malicious software packages into the code repository and carried out new – type attack activities using the JarkaStealer trojan. This trojan steals sensitive data such as browser passwords and has affected more than 1,700 developers in more than 30 countries. Personal users and small and medium – sized enterprises around the world have been deeply affected. The newly – emerged malicious AI tool Xanthorox AI in the dark web is also extremely dangerous. It supports highly automated malicious code generation, can carry out deep – fake fraud through voice synthesis and simulation, and is an offline – operable attack kit that evades monitoring through local modules, making defense even more difficult. Security institutions call on developers and enterprises to strengthen supply – chain review, avoid installing unvalidated third – party AI toolkits, and users should also be vigilant against “free download” traps and high – imitation domain names.