Alongside the extensive DeepSeek fingerprints, we observed a high degree of novelty in the dataset. Approximately 39% of analyzed samples had zero detections by signature鈥慴ased antivirus engines at the time of collection, evidence that AI-assisted development is producing code with no existing signature fingerprint. When we examined attribution separately, only 1.4% of AI鈥慳ssisted samples mapped to known threat groups, showing that the surge in new malware is being driven largely by unknown or lower鈥憇kill actors, not mature clusters; expanding volume more than sophistication.
Finally, a use-case for AI鈥攎alware!
obviously this is marketing for arctic wolf, but their research and the information they provide in the blog post is interesting. Their EDR platform they talk about used to be Cylance, which they bought off of BlackBerry. Honestly BlackBerry fumbled that product after they bought it.