AI Malware Evades Microsoft Defender 8% of the Time - Report

Edward Zhou
Edward Zhou

CEO & Founder

 
July 16, 2025 2 min read

AI-Powered Malware Bypasses Microsoft Defender

AI-assisted malware has demonstrated its ability to evade Microsoft Defender for Endpoint's security checks approximately 8% of the time after just three months of training using reinforcement learning techniques. The upcoming unveiling at Black Hat 2025 by Outflank researchers highlights the evolving threat landscape as hackers increasingly leverage AI tools.

An office worker has a "Blue Screen of Death" error on their Windows PC.

Image courtesy of Getty Images | Europa Press News

Outflank principal offensive specialist Kyle Avery reported spending around $1,500 to $1,600 on training the Qwen 2.5 large language model (LLM) to bypass security measures. His work builds on findings from a Microsoft study that indicates hackers are adopting generative AI tools like Microsoft Copilot and OpenAI's ChatGPT to enhance phishing attacks. The AI malware development process involved creating a program that evaluated how effectively the model could produce malware that avoids detection.

Reinforcement Learning Techniques

Avery's development of AI malware utilized reinforcement learning to enhance the model's capabilities across various subjects, including coding. The process required innovative strategies since traditional malware data was scarce.

Anonymous computer hacker in white mask and hoodie. Obscured dark face using laptop computer for cyber attack and calling on cellphone

Image courtesy of Getty Images

The researcher placed the Qwen 2.5 LLM in a sandbox environment running Microsoft Defender for Endpoint and iteratively refined the model based on its output. As explained by Avery, the AI initially struggled but improved through a system that rewarded successful attempts at generating functional malware. This iterative learning process allowed the model to develop malware that could circumvent security measures with a success rate of about 8%, significantly outperforming other models, such as Anthropic's Claude AI, which had a success rate of less than 1%.

Emerging Malware Trends

The increasing sophistication of malware is becoming a pressing concern for cybersecurity. Recent reports highlight various malicious activities, including the release of malware-ridden packages by North Korean hackers, which target users through platforms like the npm registry.

Additionally, the emergence of new RAT variants, such as the Interlock RAT, demonstrates the ongoing evolution of threats. The malware landscape is becoming more complex, with actors employing innovative methods to deploy attacks effectively.

For further insights into the latest trends in cybersecurity, consider exploring resources such as Dark Reading and NewsNow.

Microsoft’s Quietest Place on Earth

Microsoft's commitment to innovation is also reflected in its anechoic chamber located in Building 87 at its Redmond campus. This chamber has been recognized by the Guinness World Records as the quietest place on Earth, with sound levels recorded as low as -20dB.

Anechoic Chamber

Image courtesy of Windows Central

The chamber is essential for testing audio in devices such as the Xbox One and Surface products, showcasing Microsoft's dedication to quality and precision in hardware development.

For more details on Microsoft’s advancements and their impact on technology, visit Windows Central.

Edward Zhou
Edward Zhou

CEO & Founder

 

CEO & Founder of Gopher Security, leading the development of Post-Quantum cybersecurity technologies and solutions..

Related Articles

Ransomware Attacks Target Russian Vodka and Healthcare Sectors

The Novabev Group, parent company of the Beluga vodka brand, experienced a ransomware attack on July 14, 2025, causing significant disruptions. The attack affected WineLab, the company's liquor store chain, leading to a three-day closure of over 2,000 locations in Russia. The company reported that the attack crippled its IT infrastructure, particularly point-of-sale systems and online services. Novabev Group stated, "The company maintains a principled position of rejecting any interaction with cybercriminals and refuses to fulfill their demands."

By Alan V Gutnov July 19, 2025 3 min read
Read full article

Retail Sector Faces Surge in Ransomware Attacks: A 2025 Analysis

Publicly disclosed ransomware attacks on the retail sector globally surged by 58% in Q2 2025 compared to Q1, with UK-based firms being particularly targeted, according to a report by BlackFog. This spike in attacks follows high-profile breaches affecting retailers like Marks & Spencer (M&S), The Co-op, and Harrods, attributed to the threat actor known as Scattered Spider.

By Alan V Gutnov July 19, 2025 2 min read
Read full article

AI-Driven Lcryx Ransomware Emerges in Cryptomining Botnet

A cryptomining botnet active since 2019 has incorporated a likely AI-generated ransomware known as Lcryx into its operations. Recent analysis by the FortiCNAPP team at FortiGuard Labs identified the first documented incident linking H2miner and Lcryx ransomware. This investigation focused on a cluster of virtual private servers (VPS) utilized for mining Monero.

By Edward Zhou July 19, 2025 3 min read
Read full article

Preventing ClickFix Attacks: Safeguarding Against Human Error

ClickFix is an emerging social engineering technique utilized by threat actors to exploit human error. This technique involves misleading users into executing malicious commands under the guise of providing "quick fixes" for common computer issues. Threat actors use familiar platforms and deceptive prompts to encourage victims to paste and run harmful scripts.

By Alan V Gutnov July 19, 2025 3 min read
Read full article