Civil suit accuses unknown hackers of misusing OpenAI to provide a hacking-as-a-service offering.
Microsoft has filed suit against 10 unnamed people (“Does”), who are apparently operating overseas, for misuse of its Azure OpenAI platform, asking the Eastern District of Virginia federal court for damages and injunctive relief.
The suit was filed in late December but was not made public until last Friday, when the initial sealed filings were revealed. The complaint makes numerous claims, of which the most prominent are violations of the Computer Fraud and Abuse Act, as well as the Racketeering and Organized Corruption Act.
Microsoft, according to its main complaint, is accusing the 10 “Does” of illicitly accessing its Azure OpenAI service and using it to provide a “hacking-as-a-service” offering to other unnamed bad actors. The nameless defendants, who, according to Microsoft, make up a foreign-based consortium, used the OpenAI access to provide generative AI services to criminals, while simultaneously circumventing the “guard rails” that Microsoft has put in place in order to prevent its AI from being used for nefarious purposes.
Microsoft’s guard rails, as detailed in the complaint, are designed to bar generative AI from performing certain harmful tasks, including intentionally misleading people, creating harassing content, and much more, causing the system to reject such prompts. The unnamed hackers in this case are alleged to have devised workarounds for this behavior, allowing the AI to be used maliciously by the group’s customers.
“As alleged in our court filings unsealed today, Microsoft has observed a foreign-based threat–actor group develop sophisticated software that exploited exposed customer credentials scraped from public websites,” wrote Steven Masada, assistant general counsel at Microsoft’s digital crimes unit, in a blog post published on Friday. “Cybercriminals then used these services and resold access to other malicious actors with detailed instructions on how to use these custom tools to generate harmful and illicit content.”
Masada noted that the company has since blocked this access to its services, and “enhanced its safeguards” against similar attacks.
The lawsuit, at least in part, is an investigative tool, according to Microsoft, which said that it had seized a website linked to the criminal enterprise and gained further insight into the operation as a consequence. While the practice of suing anonymous overseas criminals in US courts isn’t exactly common, it’s a known method of pursuing this type of cybercrime, according to George Washington University law professor Paul Schiff Berman.
The idea is to expedite investigation, said Berman. By pursuing legal action in federal court, Microsoft can use legal tools to discover more information about websites and companies that are potentially involved in the illicit activity.
“I suspect that Microsoft is hoping that, in the discovery process, they’ll be able to use the subpoena power of the court to discover information that will tell them something more about who these people are,” he said.
It’s likely to be a long process, but more information about the alleged hackers could open access to further legal avenues against them. For one thing, Berman said, even if the perpetrators aren’t subject to the jurisdiction of a US court, they could be residents of a country with which the US has what’s called a mutual legal assistance treaty, which offers a channel for requesting assistance from the court system of a foreign country to provide further information or documents.
Domain registrars and web services firms in the US can be another source of information, according to Berman – something which Microsoft’s legal team apparently understands quite well, highlighting in the complaint the attacker’s misuse of services from US-based companies like Verisign and the Public Internet Registry.
Nevertheless, there are numerous obstacles that Microsoft must overcome to gather information on the alleged cybercriminals, Berman noted. Mutual legal assistance treaties are not ubiquitous, which means that countries hostile to US interests are unlikely to have such an arrangement in place, for one thing.
“I don’t think [Microsoft is] filing this suit thinking they’re going to be successful at all these things,” Berman said. “I think they’re filing the suit partially to show Americans that they’re trying … but also, to the extent they can get information, they can alert the US government.”
