5 July 2026

When AI Turns Against the Machine: The Emerging Threat of LLMs Targeting AI Infrastructure

Small Wars Journal  |  Scott Pleasants

Russia's Sandworm unit, GRU Unit 74455, demonstrated in October 2022 a sophisticated cyberattack against Ukrainian power infrastructure, leveraging the grid's own management software to trip circuit breakers while concealing the disruption. This operational template is now emerging as a significant threat to AI infrastructure, which is increasingly integrated into defense and critical systems.

The rapid integration of large language models and autonomous AI systems has created a new, undefended attack surface that existing cybersecurity frameworks were not designed to address. Adversaries like China's PLA Cyberspace Force, Russia's APT44 (Sandworm), and Iran's IRGC-affiliated cyber program are poised to exploit this vulnerability. Four documented attack classes include sponge examples for resource exhaustion, neural trojan backdoor attacks, adversarial workload scheduling, and model extraction through black-box querying. AI compute resources are becoming strategically vital, and their compromise could disrupt healthcare, finance, logistics, intelligence, and military planning without traditional alerts. Defensive countermeasures exist but remain largely unimplemented.

No comments: