TechCrunch reports new details on what was billed as the first AI-run ransomware attack: an AI agent carried out the technical execution — writing and deploying the malicious code — but a human operator still chose the victim, set up the attack infrastructure, and supplied the credentials needed to get in.
The story complicates the "autonomous AI cybercrime" narrative that circulated when the attack was first disclosed: the agent handled execution, not target selection or initial access, meaning the human-in-the-loop bottleneck for real-world criminal AI use hasn't disappeared yet.