Command-and-Control (C2) Channels

Researchers Show Copilot and Grok Can Be Co‑opted as Covert Malware C2 Relays

The approach exploits AI browsing to retrieve attacker pages, returning embedded instructions as a bidirectional channel without API credentials.