Back

AI-Powered Self-Replicating Worm Raises Cybersecurity Alarm

Severity: High (Score: 68.0)

Sources: cleverhans.io, Scientificamerican, Searchsecurity.Techtarget, Uk.Pcmag, Feeds2.Feedburner

Published: 2026-06-03 · Updated: 2026-06-06

Keywords: computer, worms, malware, threats, scientists, just, built

Severity indicators: malware, worm

Summary

Researchers at the University of Toronto have developed a self-replicating AI worm that autonomously exploits network vulnerabilities. This malware utilizes a small, free large language model (LLM) to devise unique attack strategies for each target, allowing it to adapt as it spreads. In tests, the worm identified an average of 31.3 vulnerabilities per trial and successfully escalated access on 23.1 hosts within a simulated corporate environment. The worm's ability to repair itself and generate exploits from public security advisories poses significant risks to various systems, including Linux, Windows, and IoT devices. The research highlights a new class of cyber threats that could lead to widespread exploitation if not addressed promptly. Key Points: • The AI worm can autonomously adapt its attack strategies based on the target system. • In tests, it successfully exploited vulnerabilities in nearly two-thirds of a simulated network. • The worm's self-repair capabilities and use of public advisories for exploits increase its threat level.

Detailed Analysis

**Impact** The AI-powered worm prototype was tested in a controlled environment simulating a corporate network of 33 hosts, including Linux servers, Windows machines, and IoT devices. It successfully compromised nearly two-thirds of the network, escalating privileges on 23.1 hosts and propagating to 20.4 hosts on average per trial. The threat affects enterprises with mixed operating systems and IoT deployments globally, potentially impacting sectors reliant on interconnected infrastructure such as finance, healthcare, energy, and government. Data at risk includes credentials, system configurations, and operational controls. **Technical Details** The worm uses a small, open-weight large language model (LLM) running locally on compromised GPU-equipped hosts, enabling autonomous reasoning and attack strategy generation without relying on fixed exploits. It exploits common vulnerabilities such as reused passwords, unpatched software, and specific CVEs including Marimo (CVE-2026-39987), Copy Fail, and Dirty Frag remote code execution flaws. The malware can self-repair by modifying target host files to bypass VM detection and runs parallel reasoning threads to compensate for individual exploit failures. IoT devices forward queries to infected GPU nodes, extending the worm’s reach. The worm operates through initial access, lateral movement, privilege escalation, and persistence stages. **Recommended Response** Apply patches addressing known vulnerabilities, including CVE-2026-39987 in Marimo and other recent RCE flaws. Implement AI-assisted penetration testing and fuzzing to proactively identify exploitable weaknesses. Enforce network micro-segmentation and zero-trust architectures to limit lateral movement. Monitor for anomalous GPU resource usage and unusual network traffic patterns indicative of worm propagation or AI model execution. Signature-based detection is limited due to the worm’s adaptive nature, so behavioral monitoring is critical.

Source articles (24)

  • AI-powered computer worms herald 'new era' of cybersecurity threats — Independent · 2026-06-03
    Computer worms operating in tandem with free AI chatbots like ChatGPT are a “new class of cyberthreat”, security experts have warned. Worms are a type of malware that self-replicate and spread across…
  • Autonomous AI — Feeds2.Feedburner · 2026-06-03
    Researchers at the University of Toronto, the Vector Institute, and the University of Cambridge have built and tested a proof-of-concept AI-driven worm that does not operate on a fixed list of exploit…
  • Scientists just built a powerful AI computer worm that learns as it spreads — Scientificamerican · 2026-06-03
    This prototype could help the world prepare for AI malware threats, according to the researchers who made it A new study shows that computer malware powered by easily accessible artificial intelligenc…
  • Researchers develop autonomous AI worm that adapts attacks to target hosts — Feeds.4Sysops · 2026-06-03
    Researchers from the University of Toronto and the University of Cambridge have developed a prototype computer worm that uses artificial intelligence to autonomously exploit network vulnerabilities. U…
  • Researchers build self — Itnews.Au · 2026-06-04
    A team of researchers at the University of Toronto in Canada has assembled a self-replicating malware - a worm - that is able to reason its way through networks, devising fresh attacks strategies for…
  • Researchers build self-replicating worm with BYO small AI model — Itnews.Au · 2026-06-04
    A team of researchers at the University of Toronto in Canada has assembled a self-replicating malware - a worm - that is able to reason its way through networks, devising fresh attacks strategies for…
  • CVE 2026 39987 — advisories.gitlab.com · 2026-06-04
    Marimo (19.6k stars) has a Pre-Auth RCE vulnerability. The terminal WebSocket endpoint /terminal/ws lacks authentication validation, allowing an unauthenticated attacker to obtain a full PTY shell and…
  • Open Source AI Models Power New Chaos Causing Computer Worms — Streamlinefeed.Co.Ke · 2026-06-04
    University of Toronto researchers reveal that free artificial intelligence models can create highly destructive, self-spreading computer worms in networks. The fundamental security architecture of the…
  • This AI-Driven Computer Worm Can Adapt to Attack Different Devices — Uk.Pcmag · 2026-06-04
    What happens when you use AI to create a self-replicating computer worm ? A group of researchers did just that, developing a prototype AI-driven worm that could adapt and infect a network of Windows-…
  • Latest Research — cleverhans.io · 2026-06-04
    In our pursuit of new knowledge to enhance the security of artificial intelligence, we uncovered a cybersecurity threat with implications across society. Jonas Guan *†1,2 Tom Blanchard *1,2 Hanna Foer…
  • Toronto and Cambridge team builds AI worm that hacks and infects 61.8% of test network — Dongascience · 2026-06-05
    A new form of computer malware (worm) has been developed that uses artificial intelligence (AI) to autonomously identify vulnerabilities in target systems, launch attacks, and propagate to other devic…
  • AI tools becoming hot commodities on ransomware marketplaces — Csoonline · 2026-06-05
    Sales of AI-based tools is accelerating within underground ransomware marketplaces, lowering the barrier to entry for new actors in the process. An analysis of Telegram channels, 20 dark web forums, a…
  • AI-Powered Worm Leverages Stolen Compute to Target Linux, Windows, and IoT Devices — Gbhackers · 2026-06-05
    AI-powered malware is moving from theory to reality, with new proof-of-concept worms showing how large language models (LLMs) can autonomously compromise mixed networks of Linux, Windows, and IoT devi…
  • Researchers Prototype AI-Powered Internet Worm | Let's Data Science — Letsdatascience · 2026-06-05
    According to Bruce Schneier's blog post, researchers have prototyped an AI-powered internet worm that carries its own LLM and executes that model on compromised machines. Schneier highlights that the…
  • Adaptive, Agentic AI Worms Loom as Next Enterprise Threat — Darkreading · 2026-06-05
    AI worms, or "viruses with wings and brains," adapt to new environments, seek out vulnerabilities, and will likely strike within a year, researchers say. The hunt is on to find protections against the…
  • AI-Powers Worm Exploits Stolen Compute to Infect Mixed Devices | Let's Data Science — Letsdatascience · 2026-06-05
    Per GBHackers, researchers published a proof-of-concept AI-driven worm that uses an embedded open-weight LLM running locally on compromised GPUs to autonomously scan, exploit, and propagate across mix…
  • Msblast Worm To Launch Microsoft Attack — www.zdnet.com · 2026-06-05
    The 'time bomb' in the worm's code, discovered by anti-virus and security researchers, will turn every infected system into a DoS agent on August 16, this Saturday. The systems will begin sending rand…
  • Researchers build autonomous AI worm that can reason and adapt — Searchsecurity.Techtarget · 2026-06-05
    University of Toronto researchers said they used open source technology to create an agentic AI worm that reasons and adapts -- identifying each targeted device's unique vulnerabilities and creating t…
  • 2606.03811v1 — arxiv.org · 2026-06-06
    A computer worm is malware that spreads on a network by replicating itself from one machine to another. Traditional worms, like WannaCry, exploited predetermined vulnerabilities, and their spread can…
  • The Most Pressing Challenges For CISOs And Cyber Security Teams — www.computerweekly.com · 2026-06-06
    The UK Ministry of Defence recently published its Global Strategic Trends report which sets out the developments that will shape the world over the five years. These provide an insight into some of th…
  • Scientists Find Way To Supercharge Dangerous Computer Worms With Ai — www.nytimes.com · 2026-06-03
  • 2606.03811 — arxiv.org · 2026-06-04
  • "How to 0wn the Internet in Your Spare Time," — www.usenix.org · 2026-06-05
  • SQL Slammer worm — www.caida.org · 2026-06-05

Timeline

  • 2026-06-03 — AI worm prototype tested: Researchers tested the AI worm in a controlled environment, demonstrating its ability to exploit vulnerabilities across various systems.
  • 2026-06-03 — Research findings published: The study revealing the capabilities of the AI worm was posted on arXiv, highlighting a new era of cybersecurity threats.
  • 2026-06-04 — Research reported in multiple outlets: The findings of the AI worm were covered by various news outlets, emphasizing the urgent need for cybersecurity measures.

Related entities

  • Malware (Attack Type)
  • Ransomware (Attack Type)
  • Worm (Attack Type)
  • Zero-day Exploit (Attack Type)
  • Canada (Country)
  • CWE-200 - Exposure of Sensitive Information (Cwe)
  • CWE-287 - Improper Authentication (Cwe)
  • arxiv.org (Domain)
  • subscribing.by (Domain)
  • ClawWorm (Malware)
  • WannaCry (Ransomware Group)
  • T1059 - Command and Scripting Interpreter (Mitre Attack)
  • T1203 - Exploitation for Client Execution (Mitre Attack)
  • Alpine Linux (Platform)
  • ChatGPT (Platform)
  • Linux (Platform)
  • Windows (Platform)
  • Windows Server 2008 (Platform)
  • OpenClaw (Platform)
  • Marimo (Platform)
  • Gemini (Tool)
  • Copy Fail (Vulnerability)
  • Dirty Frag (Vulnerability)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed