AI in the Middle: Turning Web-Based AI Services into C2 Proxies & The Future Of AI Driven Attacks

**Executive summary:** Check Point Research demonstrates that AI web assistants with web-browsing or URL-fetch capabilities (Grok, Microsoft Copilot) can be abused as covert C2 relays—allowing a hidden WebView2-based C++ implant to send host data via URL query parameters to an attacker-controlled site and receive executable commands in AI-generated responses—then discusses how this building block can evolve into AI-Driven malware that uses models for runtime decision-making (anti-sandboxing, triage, targeted encryption/exfiltration) and recommends hardening AI web-fetch features and monitoring AI egress as mitigations.