{"id":1716,"date":"2023-09-14T18:00:00","date_gmt":"2023-09-14T18:00:00","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=77081"},"modified":"2023-09-14T18:00:00","modified_gmt":"2023-09-14T18:00:00","slug":"dhs-warns-of-malicious-ai-use-against-critical-infrastructure","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2023\/09\/14\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure\/","title":{"rendered":"DHS warns of malicious AI use against critical infrastructure"},"content":{"rendered":"<p><head> <meta charset=\"UTF-8\"> <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\"> <meta name=\"robots\" content=\"index, follow, max-image-preview:large, max-snippet:-1, max-video-preview:-1\"> <!-- This site is optimized with the Yoast SEO Premium plugin v20.5 (Yoast SEO v20.5) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ --> <title>DHS warns of malicious AI use against critical infrastructure | CyberScoop<\/title> <meta name=\"description\" content=\"The DHS report warns of state-backed hackers using AI for both malware development and election interference.\"> <link rel=\"canonical\" href=\"https:\/\/cyberscoop.com\/dhs-homeland-threat-assessment\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"DHS warns of malicious AI use against critical infrastructure\"> <meta property=\"og:description\" content=\"The DHS report warns of state-backed hackers using AI for both malware development and election interference.\"> <meta property=\"og:url\" content=\"https:\/\/cyberscoop.com\/dhs-homeland-threat-assessment\/\"> <meta property=\"og:site_name\" content=\"CyberScoop\"> <meta property=\"article:published_time\" content=\"2023-09-14T18:00:00+00:00\"> <meta property=\"article:modified_time\" content=\"2023-09-14T18:50:39+00:00\"> <meta property=\"og:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure-1.jpg\"> <meta property=\"og:image:width\" content=\"1920\"> <meta property=\"og:image:height\" content=\"1341\"> <meta property=\"og:image:type\" content=\"image\/jpeg\"> <meta name=\"author\" content=\"Christian Vasquez\"> <meta name=\"twitter:card\" content=\"summary_large_image\"> <meta name=\"twitter:creator\" content=\"@chrismvasq\"> <!-- \/ Yoast SEO Premium plugin. --> <link rel=\"dns-prefetch\" href=\"\/\/cdn.parsely.com\">\n<link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Feed\" href=\"https:\/\/cyberscoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Comments Feed\" href=\"https:\/\/cyberscoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-0\" href=\"https:\/\/cyberscoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1693959706g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-4\" href=\"https:\/\/cyberscoop.com\/wp-content\/mu-plugins\/search\/elasticpress-next\/dist\/css\/related-posts-block-styles.min.css?m=1693499496g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-6\" href=\"https:\/\/cyberscoop.com\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1693525727g\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=7af46db108fbc62fdcc9\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/cyberscoop.com\/wp-json\/\"><link rel=\"alternate\" type=\"application\/json\" href=\"https:\/\/cyberscoop.com\/wp-json\/wp\/v2\/posts\/77081\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/cyberscoop.com\/xmlrpc.php?rsd\">\n<meta name=\"generator\" content=\"WordPress 6.3.1\">\n<link rel=\"shortlink\" href=\"https:\/\/cyberscoop.com\/?p=77081\">\n<link rel=\"alternate\" type=\"application\/json+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fdhs-homeland-threat-assessment%2F\">\n<link rel=\"alternate\" type=\"text\/xml+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fdhs-homeland-threat-assessment%2F&amp;format=xml\"> <!-- Google Tag Manager --> <!-- End Google Tag Manager --> <link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=270\"> <\/head><body class=\"post-template-default single single-post postid-77081 single-format-standard\" id=\"readabilityBody\"> <a href=\"https:\/\/cyberscoop.com\/dhs-homeland-threat-assessment\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--newsletter js-stickybar\" readability=\"0.82\"> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \" readability=\"25.215151515152\">\n<div class=\"single-article__header-content\" readability=\"29.383561643836\">\n<p> The DHS report warns of state-backed hackers using AI for both malware development and election interference. <\/p>\n<\/p><\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"447\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure.jpg?resize=640%2C447&#038;ssl=1\" class=\"single-article__cover-image wp-post-image\" alt decoding=\"async\" fetchpriority=\"high\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure-1.jpg 1920w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure-1.jpg?resize=300,210 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure-1.jpg?resize=768,536 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure-1.jpg?resize=1024,715 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure-1.jpg?resize=1536,1073 1536w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure-1.jpg?resize=600,419 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure-1.jpg?resize=241,168 241w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure-1.jpg?resize=483,337 483w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure-1.jpg?resize=966,675 966w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/09\/dhs-warns-of-malicious-ai-use-against-critical-infrastructure-1.jpg?resize=1207,843 1207w\" sizes=\"(max-width: 966px) 100vw, 966px\"><figcaption> US Homeland Security Secretary Alejandro Mayorkas at a joint news conference with Mexican Foreign Secretary Marcelo Ebrard and Mexican Security Secretary Rosa Icela Rodriguez at the State Department in Washington on October 13. Photo by OLIVIER DOULIERY\/AFP via Getty Images) <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"65.010369068541\"><body readability=\"133.6194449483\"><\/p>\n<p>The Department of Homeland Security\u2019s Homeland Threat Assessment is warning of bad actors potentially using artificial intelligence to disrupt critical infrastructure either through election influence campaigns or by targeting industrial systems.<\/p>\n<p><a href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/09\/2024HTA.pdf\">The annual report<\/a> \u2014 which outlines the key concerns for the next year \u2014 points to adversaries increasingly focusing and learning how to target critical infrastructure, like energy, the upcoming 2024 election, transportation, pipelines, and other vital services, with emerging technologies like AI. <\/p>\n<p>State-backed hackers like China are also adapting AI to engage in influence campaigns or to better develop malware for large-scale attacks, DHS says.<\/p>\n<p>\u201cOne of our key areas of concern is against critical infrastructure because it provides kind of the goods and services that are the backbone of our nation, and we think that many adversaries really kind of understand the interconnectedness of our critical infrastructure and the impacts it would have,\u201d a DHS official said during a media briefing on Thursday.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>While industrial-specific malware is rare, the report warns that hackers are seeking to develop or are developing malicious code that seeks to disrupt the industrial control systems found in the energy, transportation, health care, and election sectors. The <a href=\"https:\/\/cyberscoop.com\/cisa-doe-fbi-nsa-pipedream-chernovite-ics\/\">malware dubbed \u201cpipedream<\/a>\u201d by security researchers is one such example of malware made specifically to target industrial devices.<\/p>\n<p>Additionally, DHS says that Beijing is particularly interested in using AI to develop malware for attacks that are \u201clarger scale, faster, efficient, and more evasive.\u201d The report points to the transportation sector in particular, including railways and pipelines, but it said other critical infrastructure sectors may also be targeted.<\/p>\n<p>China has been a key concern, particularly regarding critical infrastructure in recent years. The intelligence community\u2019s threat report also pointed to railways and pipelines as a target from Chinese-backed hackers. In May, Microsoft and U.S. intelligence agencies pointed to the <a href=\"https:\/\/cyberscoop.com\/china-critical-infrastructure-volt-typhoon\/\">Chinese hacking group dubbed \u201cVolt Typhoon\u201d<\/a> for their potentially disruptive targeting of critical infrastructure like telecommunications in the U.S. and Guam.<\/p>\n<p>All the while, the U.S. is also turning to so-called \u201csmart city technologies\u201d that also increase the risks to key services, DHS said. Digitally native technology can increase the efficiency of a particular service, but it also comes with added vectors of attack for hackers if not built with security in mind.<\/p>\n<p>In April, DHS created an <a href=\"https:\/\/www.dhs.gov\/sites\/default\/files\/2023-04\/23_0420_sec_signed_ai_task_force_memo_508.pdf\">Artificial Intelligence Task Force<\/a> that will work on assessing the impact of AI on securing critical infrastructure, among other tasks like countering countering drug trafficking.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>K-12 school districts have faced \u201c<a href=\"https:\/\/statescoop.com\/k12-cyberattacks-ransomware-bec\/\">near constant ransomware targeting<\/a>\u201d due to a lack of dedicated resources against malicious hackers, DHS added.<\/p>\n<p>On the espionage side, Russia continues to probe federal and local governments and the majority of the major critical infrastructure sectors such as defense, energy, nuclear, aviation, transportation, healthcare, education, media, and telecommunications.<\/p>\n<p>Beijing, meanwhile, will continue to target healthcare, finance, the defense industrial base, government facilities, and communications. However, China is also expanding its development of maritime logistics software and the adoption of such software could increase risks to ports, DHS says.<\/p>\n<p>Another threat, Iran is using common vulnerabilities and hacking tools for espionage against U.S. critical infrastructure broadly.<\/p>\n<p>Espionage within critical infrastructure can also be a precursor to disruptive attacks, officials note. It can be difficult to tell whether an intrusion is simply espionage or a malicious hacker working on a larger disruptive goal. Volt Typhoon is one such example that uses techniques known as \u201cliving off the land,\u201d in which adversaries rely on tools commonly used in their victims\u2019 networks to escape detection.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>\u201cDomestic and foreign adversaries will likely seek to target our critical infrastructure over the next year while cyberattacks seeking to compromise networks or disrupt services for geographical, political or financial purposes continue apace. We have noted an uptick over the last year of physical attacks on our critical infrastructure as well,\u201d a DHS official said.<\/p>\n<p>The report also warned of election interference by ideological extremists who seek to disrupt the Democratic process through violence or threats. State-backed hackers will likely use novel approaches like AI to increase both the quality and breadth of the campaigns.<\/p>\n<p>\u201cWe expect the 2024 election cycle will be a key event for possible violence and foreign influence targeting our election infrastructure processes and personnel,\u201d a DHS official told reporters. \u201cThe proliferation of accessible artificial intelligence tools likely will bolster our adversaries\u2019 tactics for miss-, dis- and mal-information campaigns and cyberattacks.\u201d<\/p>\n<p>The DHS report points to Russia, China, and Iran as those likely to conduct overt and covert influence campaigns to shape the election cycle in their favor. Such campaigns could use AI to conduct \u201clow-cost, synthetic text-, image-, and audio-based content with higher quality.\u201d<\/p>\n<p>In September, Microsoft revealed that Chinese-state-backed hacking groups are <a href=\"https:\/\/cyberscoop.com\/chinese-ai-ops-microsoft\/\">already using AI<\/a> to generate viral content to create divisive messaging campaigns.<\/p>\n<p><\/body> <\/p>\n<footer class=\"single-article__footer\">\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<div class=\"popular-stories popular-stories--single-post\">\n<div class=\"popular-stories__container\">\n<h2 class=\"popular-stories__title\"> More Scoops <\/h2>\n<p> <!-- .popular-stories__stories --> <\/div>\n<p><!-- .popular-stories__inner -->\n<\/div>\n<p><!-- .popular-stories --> <\/p>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Technology<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Government<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to CyberScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p> <!-- Start of HubSpot Embed Code --> <!-- End of HubSpot Embed Code --> <\/body> <a href=\"https:\/\/cyberscoop.com\/dhs-homeland-threat-assessment\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>DHS warns of malicious AI use against critical infrastructure |<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[384,271,413,293,944,945,513,46,270,288],"tags":[388,277,415,299,946,947,517,54,276,294],"class_list":["post-1716","post","type-post","status-publish","format-standard","hentry","category-artificial-intelligence-ai","category-china","category-critical-infrastructure","category-department-of-homeland-security-dhs","category-election-interference","category-influence-operations","category-iran","category-ransomware","category-russia","category-threats","tag-artificial-intelligence-ai","tag-china","tag-critical-infrastructure","tag-department-of-homeland-security-dhs","tag-election-interference","tag-influence-operations","tag-iran","tag-ransomware","tag-russia","tag-threats"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/artificial-intelligence-ai\/\" rel=\"category tag\">artificial intelligence (AI)<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/china\/\" rel=\"category tag\">China<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/critical-infrastructure\/\" rel=\"category tag\">critical infrastructure<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/department-of-homeland-security-dhs\/\" rel=\"category tag\">Department of Homeland Security (DHS)<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/election-interference\/\" rel=\"category tag\">election interference<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/influence-operations\/\" rel=\"category tag\">influence operations<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/iran\/\" rel=\"category tag\">Iran<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/ransomware\/\" rel=\"category tag\">ransomware<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/russia\/\" rel=\"category tag\">Russia<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/threats\/\" rel=\"category tag\">Threats<\/a>","tag_info":"Threats","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/1716","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=1716"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/1716\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=1716"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=1716"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=1716"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}