%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23061b40;%20}%20.st1%20{%20fill:%20%23306af1;%20}%20.st2%20{%20fill:%20%235ce5cf;%20}%20%3c/style%3e%3c/defs%3e%3cg%3e%3cpath%20class='st0'%20d='M55,10.5h9v3h-9v9h12V7.5h-12v3ZM64,19.5h-6v-3h6v3Z'/%3e%3cpolygon%20class='st0'%20points='69%2016.5%2078%2016.5%2078%2019.5%2069%2019.5%2069%2022.5%2081%2022.5%2081%2013.5%2072%2013.5%2072%2010.5%2081%2010.5%2081%207.5%2069%207.5%2069%2016.5'/%3e%3cpolygon%20class='st0'%20points='95%2010.5%2095%207.5%2083%207.5%2083%2022.5%2095%2022.5%2095%2019.5%2086%2019.5%2086%2016.5%2095%2016.5%2095%2013.5%2086%2013.5%2086%2010.5%2095%2010.5'/%3e%3cpath%20class='st0'%20d='M40,1.5v21h11.6l1.4-1.4v-7.6h0c0,0-1.4-1.5-1.4-1.5l1.4-1.4V2.9l-1.4-1.4h-11.6ZM50,19.5h-7v-6h7v6ZM50,10.5h-7v-6h7v6Z'/%3e%3c/g%3e%3cpath%20class='st1'%20d='M23.1,24L14.7,4.8l-4.9,11.2h3.8l-1.8,4H3.3L12.1,0H2C.9,0,0,.9,0,2v20c0,1.1.9,2,2,2h21.1Z'/%3e%3cpath%20class='st2'%20d='M34,0h-16.8l10.6,24h6.2c1.1,0,2-.9,2-2V2C36,.9,35.1,0,34,0ZM32.5,20h-4V4h4v16Z'/%3e%3c/svg%3e)
Security research lab Palisade Research recently released a report confirming that AI agents have achieved the ability to conduct cross-border autonomous hacking and self-replication, marking a new phase in AI security threats, transitioning from "auxiliary tools" to "autonomous pathogens." In the latest testing environment, AI agents were able to independently identify remote computer vulnerabilities, install necessary software on their own, replicate their own model weights, and then launch copies to trigger a chain reaction.
Key data shows that the self-replication success rate of cutting-edge models has seen a significant increase over the past year, rising from 6% in May 2025 to 81% in May 2026. This evolutionary speed is highly correlated with the improvement of model's autonomous hacking and coding capabilities. In a practical demonstration, an agent based on Qwen3.6 (27B) completed a cross-border "jump" replication from the United States to Canada, Finland, and India within 50 minutes, with the difficulty of cross-border propagation being no different from local propagation.
For closed-source models, researchers demonstrated through API-based models such as Claude Opus4.6 the ability to configure and run open-source model weights on target machines. Simulation tests showed that, in the worst-case scenario, the Opus model could generate 13,000 copies within 12 hours. Although the current experiments were set in environments with weak defenses, the breakthroughs in zero-day vulnerability discovery by models like Mythos have raised high industry concerns about the future shift in the balance of offensive and defensive strategies. This development signals that the cybersecurity field is transitioning from human-led conflict to confrontation between AI agents, and judicial jurisdictions will face serious challenges in dealing with uncontrollable AI agents.