Cybersecurity researchers at ESET have uncovered a troubling new trend in cybercrime: hackers are now using AI-generated malware to intercept payments made through Near Field Communication (NFC)-enabled devices. This advanced malware is capable of relaying sensitive payment card data, carrying out fraudulent online purchases, and even enabling unauthorized withdrawals from Automated Teller Machines (ATMs). The discovery highlights how cybercriminals are rapidly adopting artificial intelligence to enhance both the scale and sophistication of their attacks.
This development provides concrete evidence that threat actors are no longer limiting their use of artificial intelligence to traditional cyberattacks such as ransomware. While AI-powered ransomware like PromptLock has already demonstrated how systems can be scanned, locked, or have their data destroyed, criminals are now going a step further. By leveraging Generative Artificial Intelligence (GenAI), hackers are creating malicious software designed specifically to commit financial fraud, targeting digital payment systems that many people rely on daily.
Readers of Cybersecurity Insider may recall that just a few months ago, ESET reported another alarming use of GenAI by cybercriminals. In that case, attackers were using AI tools to craft highly convincing phishing scams. These scams were made possible through the use of widely available open-source and commercial AI platforms such as Google Gemini, OpenAI’s ChatGPT, and Anthropic’s Claude. The ability of these tools to generate realistic language has made phishing attacks harder to detect, increasing the risk for both individuals and organizations.
Given the growing misuse of GenAI, incident response and cybersecurity teams must begin taking proactive measures to defend against these evolving threats. Basic security hygiene remains one of the most effective defenses. This includes keeping operating systems and applications fully updated, ensuring browsers are patched with the latest security fixes, deploying reputable endpoint protection solutions, and running automated system scans on a regular basis to detect suspicious activity early.
In addition to technical safeguards, employee training is equally important. Educating staff about emerging cyber threats, phishing techniques, and safe digital behavior can significantly reduce the likelihood of successful attacks. When users remain alert and informed, they become a strong first line of defense against AI-driven cybercrime, helping organizations stay resilient in an increasingly complex threat landscape.
