A sophisticated new threat platform, Nytheon AI, has emerged, which combines multiple uncensored large language models (LLMs)<\/a> built specifically for malicious activities.<\/p>\n The platform, discovered by Cato CTRL, is being actively promoted on popular hacking forums, including XSS and various Telegram channels, representing a significant evolution in how threat actors are leveraging artificial intelligence for cybercriminal operations.<\/p>\n The Nytheon AI platform operates exclusively on the Tor network, providing threat actors with a comprehensive suite of AI-powered tools.\u00a0<\/p>\n Unlike previous single-model offerings such as WormGPT<\/a>, BlackHatGPT<\/a>, and FraudGPT<\/a>, Nytheon AI presents an integrated ecosystem of specialized models designed for different attack vectors.<\/p>\n The platform includes Nytheon Coder and Nytheon Coder R1 for code generation, Nytheon GMA for document summarization and translation, Nytheon Vision for image-to-text recognition, and Nytheon AI as a control model.\u00a0<\/p>\n Each model, except the control version, shares an identical 1,000-token system prompt that deliberately disables safety layers and mandates compliance with illegal requests, ensuring immediate production of malicious content without requiring external\u00a0jailbreaking techniques<\/a>.<\/span><\/p>\n The technical sophistication behind Nytheon AI distinguishes it from typical dark web offerings. The platform utilizes a modern SvelteKit SPA (Single Page Application) with TypeScript and Vite on the frontend, communicating with a FastAPI-style backend.\u00a0<\/p>\n The architecture includes modular .svelte components such as AddServerModal.svelte and NotificationToast.svelte, while Web Workers like KooreoWorker.ts handle intensive client-side tasks including file processing.<\/p>\n The backend infrastructure operates through multiple microservices accessible via REST endpoints: \/ollama for local model server operations using GGUF (GPT-Generated Unified Format) weights, \/openai for upstream OpenAI-compatible endpoints, and specialized services at \/api\/v1\/audio, \/images, and \/retrieval for speech-to-text, image generation, and RAG (Retrieval-Augmented Generation) search capabilities.<\/p>\n Recent platform updates have introduced multimodal ingestion capabilities with Mistral OCR integration, Azure AI Speech-to-Text functionality, and OpenAPI specification parsing that allows users to integrate external APIs directly into the chat interface.\u00a0<\/p>\n This enables threat actors to both generate malicious content and execute attacks through tool calls within a single interface.<\/p>\n Investigators have identified<\/a> strong indicators pointing to Russian-speaking operators behind the platform.\u00a0<\/p>\n Analysis of demonstration videos revealed a Russian-language movie poster for \u201c\u0417\u0435\u043b\u0451\u043d\u044b\u0439 \u043f\u0430\u0443\u043a\u201d (\u201cThe Green Spider\u201d), a Soviet-era film, while direct communication with platform operators confirmed the use of post-Soviet dialect patterns.\u00a0<\/p>\n The platform\u2019s promotion on XSS, a popular Russian hacking forum, further supports this assessment.<\/p>\n The platform\u2019s rapid development cycle, with five-point releases spanning nine days, demonstrates active ongoing development while potentially introducing exploitable vulnerabilities.\u00a0<\/p>\n This represents a concerning evolution in cybercriminal infrastructure, moving beyond simple uncensored chatbots<\/a> to comprehensive GenAI-as-a-service operations capable of supporting sophisticated attack campaigns including spear-phishing<\/a>, polymorphic malware generation, and deepfake document creation.<\/p>\n Automate threat response with ANY.RUN\u2019s TI Feeds\u2014Enrich alerts and block malicious IPs across all endpoints<\/strong>\u00a0->\u00a0Request full access<\/strong><\/a><\/strong><\/p>\n The post Hackers Advertising New Blackhat Tool Nytheon AI on Popular Hacking Forums<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\nDark Web Platform Offers Integrated AI Tools<\/strong><\/h2>\n
![\"\"](\"https:\/\/lh7-rt.googleusercontent.com\/docsz\/AD_4nXcSIJ1Az6-tSrwO_9S6_zwh97lghx87Vt_WlvQGG6TknaR8w0hpc_0MIM7jIgmwrWDsIvzEjPMIvaLMPDcg2owOreHi-HPjAz_G-N5M27wipsa-jwU1h7bboG3qDbUfDWE5p82b?key=0eAlHcxfdktrwBHl-3Ri3A\")
![\"\"](\"https:\/\/lh7-rt.googleusercontent.com\/docsz\/AD_4nXeXMzsmk1XjTwWrhQhyXqBE-IqPsHdJbfqgWZmsYFZE76nkWX-cG79NRBzYaEZLb1gwjhBiDfjo8ZI8fd2FVv0pqOdBnNjXPwb_tJZYMEUApVAWjrgStfOmKe7Ba8lPhC3cOOKviA?key=0eAlHcxfdktrwBHl-3Ri3A\")
![\"\"](\"https:\/\/lh7-rt.googleusercontent.com\/docsz\/AD_4nXe5lRb6Ttzu5JcJqj9f7sz1EBJwFLy9y2jROUquM3CvpDyp6CDQgF4meCMFbqRmG0_Xd69S4OrHlhqmgS9eSd71O0i0dTLgcQkwFzhWDJJwcxHxnML0aBS9sNeTUAR4aJ_35lyepQ?key=0eAlHcxfdktrwBHl-3Ri3A\")