University of Toronto Researchers Create AI-Driven Computer Worms

Researchers at the University of Toronto developed self-replicating computer worms using generative AI that can spread across networks without human direction ^[1].

The discovery highlights a critical security gap in how artificial intelligence interacts with software. Because these worms can adapt to attack different devices and operate autonomously, they pose a significant threat to data privacy and network integrity ^[2].

Professor Nicolas Papernot and his research team led the project to demonstrate how open-weight AI models can be weaponized ^[2]. The study, which was publicly disclosed in March 2024 ^[5], shows that AI-generated malware can navigate systems and potentially steal private data as it moves from one machine to another ^[3].

Unlike traditional malware, which often requires a human operator to guide the attack or specific pre-programmed triggers, these AI worms possess a level of autonomy. This allows them to identify vulnerabilities and adapt their approach in real time ^[2]. The researchers focused on these capabilities to underscore the vulnerabilities present in AI-enabled software ^[2].

By using open-weight models, the team illustrated that the same technology used for beneficial AI development can be repurposed for cyberattacks ^[2]. The research serves as a warning to developers and security professionals regarding the lack of safeguards in current AI deployments ^[3].

The team utilized the university's facilities in Canada to conduct the experiments ^[2]. Their findings suggest that as AI becomes more integrated into operating systems, the potential for autonomous, self-evolving threats increases, making traditional perimeter-based security less effective.