Using AI For Covert Command-And-Control Channels
Check Point, Monday, February 16th, 2026
heck Point Research has identified a potential new abuse pattern: AI assistants with web-browsing Ccapabilities could, in the future, be repurposed as covert command-and-control (C2) relays.
Check Point Research identified a potential future attack technique in which AI assistants with web-browsing capabilities could be abused as covert command-and-control (C2) channels.
As AI services become widely adopted and implicitly trusted, their network traffic increasingly blends into normal enterprise activity, expanding the attack surface.
AI-enabled C2 could allow attacker communications to evade traditional detection by hiding inside legitimate-looking AI interactions.
The same building blocks point toward a broader shift to AI-driven malware, where AI systems influence targeting, prioritization, and operational decisions rather than serving only as development tools.