AI Assistants Exploited as Covert C2 Relay Channels
🛡️ AI assistants with web-browsing features can be abused as covert command-and-control (C2) relays. Check Point Research found that platforms such as Grok and Microsoft Copilot can be prompted to fetch attacker-controlled URLs and return embedded instructions, effectively acting as a proxy without requiring an API key or account. Attackers can tunnel encoded data via URL parameters and receive commands in the assistant's summary, disguising malicious traffic as routine AI usage.
