CyberSecurityBoard
Sponsor Register Login

Microsoft SesameOp malware abuses OpenAI assistants API in attacks

Microsoft has identified a new malware strain named SesameOp that exploits the OpenAI Assistants API to enhance its attack capabilities. This innovative malware leverages AI-driven functionalities to automate and improve the efficiency of its malicious operations, marking a significant evolution in cyber threats. SesameOp's use of the OpenAI API allows it to generate sophisticated phishing messages, evade detection, and adapt its tactics dynamically, posing a heightened risk to organizations worldwide. The malware's integration with AI services demonstrates a concerning trend where threat actors harness advanced technologies to amplify their impact. Security experts urge organizations to strengthen their defenses by implementing robust endpoint protection, continuous monitoring, and employee awareness training to mitigate the risks posed by AI-powered malware. This development underscores the critical need for cybersecurity strategies to evolve in tandem with emerging technologies to effectively counteract increasingly sophisticated cyberattacks.

This Cyber News was published on www.bleepingcomputer.com. Publication date: Mon, 03 Nov 2025 18:40:12 +0000


Cyber News related to Microsoft SesameOp malware abuses OpenAI assistants API in attacks

Voice Assistants and Privacy: Striking the Right Balance - The pervasive presence of voice assistants in our lives is a testament to the power of technology and its potential for furthering human progress. Voice assistants are digital, voice-controlled devices that allow users to interact with a virtual ...
1 year ago Securityzap.com
Sam Altman's Return As OpenAI CEO Is A Relief-and Lesson-For Us All - The sudden ousting of OpenAI CEO Sam Altman on Friday initially seemed to suggest one thing: he must have done something really, really bad. Possibly illegal. So when OpenAI's board of directors publicly announced that Altman was fired after "Failing ...
1 year ago Forbes.com
OpenAI Assistants API Exploited by SesameOp Malware for Stealthy Attacks - The recent discovery of the SesameOp malware exploiting the OpenAI Assistants API marks a significant development in cyber threats. This sophisticated malware leverages AI capabilities to conduct stealthy and evasive attacks, posing new challenges ...
1 week ago Infosecurity-magazine.com
Evolution of AI Assistants: Navigating Breakthroughs in Software Development - This article will help you explore the history of AI's evolution from the first chatbot to smart virtual assistants capable of making their own decisions. Software developers started working on the first virtual assistants in the late 1960s. ELIZA. ...
1 year ago Hackread.com
SesameOp Backdoor Uses OpenAI API for Covert C2 Communications - The SesameOp backdoor represents a sophisticated evolution in cyberattack methodologies by leveraging the OpenAI API to conduct covert command and control (C2) communications. This novel technique allows attackers to mask their malicious traffic ...
1 week ago Darkreading.com
Microsoft SesameOp malware abuses OpenAI assistants API in attacks - Microsoft has identified a new malware strain named SesameOp that exploits the OpenAI Assistants API to enhance its attack capabilities. This innovative malware leverages AI-driven functionalities to automate and improve the efficiency of its ...
1 week ago Bleepingcomputer.com
Microsoft Invests Billions in OpenAI – Innovator in Chatbot and GPT Technology - Microsoft has announced a $1 billion investment in OpenAI, the San Francisco-based artificial intelligence (AI) research and development firm. Founded by tech moguls Elon Musk and Sam Altman, OpenAI is a leader in AI technology, and the investment ...
2 years ago Securityweek.com
UK Scrutiny Of Microsoft Partnership With OpenAI - CMA seeks feedback about the relationship between Microsoft and OpenAI, and whether it has antitrust implications. Microsoft, it should be remembered, was firmly rebuked for its conduct by the CMA in October after the UK regulator reversed its ...
1 year ago Silicon.co.uk
OpenAI's board might have been dysfunctional-but they made the right choice. Their defeat shows that in the battle between AI profits and ethics, it's no contest - The drama around OpenAI, its board, and Sam Altman has been a fascinating story that raises a number of ethical leadership issues. What are the responsibilities that OpenAI's board, Sam Altman, and Microsoft held during these quickly moving events? ...
1 year ago Fortune.com Equation
OpenAI is to Launch a AI Web Browser in Coming Weeks - The new browser will feature integrated AI agent capabilities designed to autonomously handle various online tasks, positioning OpenAI as a direct competitor to traditional browser giants like Google Chrome while advancing the company’s vision ...
4 months ago Cybersecuritynews.com
Defining Good: A Strategic Approach to API Risk Reduction - A good API security strategy starts with a well thought out API security posture governance program that spans from design to deployment. That standard, if communicated and enforced effectively, will not only positively affect how a developer designs ...
1 year ago Securityboulevard.com
OpenAI's Sora Generates Photorealistic Videos - OpenAI released on Feb. 15 an impressive new text-to-video model called Sora that can create photorealistic or cartoony moving images from natural language text prompts. Sora isn't available to the public yet; instead, OpenAI released Sora to red ...
1 year ago Techrepublic.com
Microsoft Incident Response lessons on preventing cloud identity compromise - Microsoft Incident Response is often engaged in cases where organizations have lost control of their Microsoft Entra ID tenant, due to a combination of misconfiguration, administrative oversight, exclusions to security policies, or insufficient ...
1 year ago Microsoft.com
Salt Security Delivers API Posture Governance Engine - PRESS RELEASE. PALO ALTO, Calif., Jan. 17, 2024 /PRNewswire/ - Salt Security, the leading API security company, today announced multiple advancements in discovery, posture management and AI-based threat protection to the industry leading Salt ...
1 year ago Darkreading.com
Types of Malware and How To Prevent Them - Malware is one of the biggest security threats to any type of technological device, and each type of malware uses unique tactics for successful invasions. Even if you've downloaded a VPN for internet browsing, our in-depth guide discusses the 14 ...
1 year ago Pandasecurity.com
Nadella Says Microsoft 'Comfortable' With OpenAI Governance - Microsoft chief Nadella says he is 'comfortable' with OpenAI's non-profit governance structure, plays down competition issues. Microsoft secured a non-voting board observer role at OpenAI following Altman's firing and return, but Nadella said ...
1 year ago Silicon.co.uk
ChatGPT Maker OpenAI Raises $6.6bn In Funding | Silicon UK - Last week when OpenAI’s ‘for profit’ restructuring move was revealed, three senior executives abruptly announced they were departing, including Chief Technology Officer Mira Murati, VP Research Barret Zoph, and Chief Research ...
1 year ago Silicon.co.uk
Imperva Named an Overall Leader in the KuppingerCole Leadership Compass: API Security and Management Report - We're thrilled to share that Imperva has achieved the prestigious status of Overall Leader in the KuppingerCole Leadership Compass: API Security and Management report. A notable achievement is being recognized as one of the few non-gateway-first ...
1 year ago Imperva.com
Top 10 Best Dynamic Malware Analysis Tools in 2025 - FireEye Malware AnalysisEnterprise-grade solution, zero-day detection, integration with threat intelligence, memory forensics.Enterprise-grade malware detection and forensicsPricing details not publicly available; contact for quote.Yes6. Detux ...
8 months ago Cybersecuritynews.com
OpenAI Launches Security Committee Amid Ongoing Criticism - The new committee comes in the wake of two key members of the Superalignment team - OpenAI co-founder Ilya Sutskever and AI researcher Jan Leike - left the company. The shutting down of the superalignment team and the departure of Sutskever and Leike ...
1 year ago Securityboulevard.com
That time I broke into an API and became a billionaire - This included an internal API with a dependency on a third-party banking API. We'll get to the banking API later in this story. That's all thanks to developers embracing agile development, microservices, and API gateway redirection that exposed ...
1 year ago Securityboulevard.com
PixPirate: The Brazilian financial malware you can't see, part one - The constantly mutating PixPirate malware has taken that strategy to a new extreme. PixPirate is a sophisticated financial remote access trojan malware that heavily utilizes anti-research techniques. Within IBM Trusteer, we saw several different ...
1 year ago Securityintelligence.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)