Xanthorox AI Raises Alarm With Offline, Undetectable Cybercrime Capabilities - 1

New AI Tool Xanthorox Operates Off-Grid

Xanthorox AI Raises Alarm With Offline, Undetectable Cybercrime Capabilities

  • Written by Kiara Fabbri Former Tech News Writer
  • Fact-Checked by Sarah Frazier Former Content Manager

A powerful new AI tool called Xanthorox has surfaced in cybercrime forums, raising concerns among cybersecurity experts.

In a rush? Here are the quick facts:

  • Xanthorox AI functions as a self-contained malicious cybercriminal tool which operates independently.
  • The system operates independently and evades detection through its custom-developed models.
  • The tool generates malware that allows it to evade protection from Windows Defender standard defenses.

Discovered by researchers at SlashNext , it functions as a complete self-hosted cybercrime platform that operates independently from popular AI systems including ChatGPT and Claude.

First spotted in early 2025, Xanthorox is being promoted as a “Killer of WormGPT and all EvilGPT variants.” The researchers say that Xanthorox differs from previous tools because it was developed from scratch. Xanthorox operates as a local server-based system with five modular models which enables offline usage, and complicates detection efforts.

Screenshots show one of its components, Xanthorox Coder produces ransomware which bypasses Windows Defender. Xanthorox Vision serves as an image and diagram analysis tool, while Xanthorox Reasoner Advanced creates decisions through human-like processes.

The system contains voice functionality and search capabilities which can extract data from more than 50 search engines.

“It’s easy to think of the cybercriminal ecosystem as one big amorphous blob of badness, when in reality it operates much like any service and platform industry — with different groups focusing on and specializing in their unique contribution to the overall kill chain, and ‘startups’ like this one popping up to create a competitive advantage for criminals,” said Bugcrowd founder Casey Ellis, as reported by SC Media .

What makes Xanthorox especially dangerous is its ability to operate without internet access, public APIs, or commercial cloud tools. It can process various file types like .pdf, .txt, and .c files — extracting, rewriting, or analyzing them to support cyber operations. SlashNext researchers were able to view some of its features through videos and screenshots shared by the developer.

“If the threat actor’s claims are true, Xanthorox is less susceptible to detection and takedown than similar malicious tools,” said Stephen Kowski, Field CTO at SlashNext, as reported by SC Media.

With the use of AI in phishing and malware campaigns growing rapidly, security firms warn that tools like Xanthorox could mark a turning point in AI-driven cybercrime.

As SlashNext researcher Daniel Kelley noted to SC Media, “Even if Xanthorox doesn’t meet every expectation, the technology to build something similar is available, and we’ll likely see systems like it emerge soon.”

Shopify CEO: No New Hires Without Proving AI Can’t Do the Job - 2

Featured image: Image by Collision Conf, from Flickr

Shopify CEO: No New Hires Without Proving AI Can’t Do the Job

  • Written by Kiara Fabbri Former Tech News Writer
  • Fact-Checked by Sarah Frazier Former Content Manager

Shopify CEO Tobi Lütke is urging employees to fully embrace artificial intelligence before requesting more staff or resources.

In a rush? Here are the quick facts:

  • AI usage is now required in all Shopify employees’ daily work.
  • Performance reviews will include questions about effective AI use.
  • Shopify has launched AI tools like Sidekick and Shopify Magic.

In a recent internal memo Lütke made it clear that AI should be the first solution explored when tackling new tasks.

I heard this internal memo of mine is being leaked right now, so here it is: pic.twitter.com/Qn12DY7TFF — tobi lutke (@tobi) April 7, 2025

“Before asking for more headcount and resources, teams must demonstrate why they cannot get what they want done using AI,” he wrote. He posed a thought-provoking question to his staff: “What would this area look like if autonomous AI agents were already part of the team?”

According to Lütke, using AI effectively is now “a fundamental expectation of everyone at Shopify.” He emphasized that employees who lean into AI tools have been able to accomplish significantly more. “I’ve seen many of these people approach implausible tasks… with reflexive and brilliant usage of AI to get 100X the work done,” he added.

AI performance will now be part of performance and peer reviews, he said. Shopify, known for helping online sellers run their businesses, has already launched AI tools like its chatbot Sidekick and its automation system, Shopify Magic.

The directive comes as the tech industry continues to invest heavily in AI while simultaneously cutting jobs. According to Layoffs.fyi, more than 152,000 tech jobs were eliminated across 549 companies in 2024 alone. Shopify’s own headcount dropped to 8,100 by the end of last year, from 8,300 a year earlier, as reported by CNBC .

Despite the pressure to keep staffing flat, Shopify CFO Jeff Hoffmeister recently said the company may spend more on salaries, particularly for top AI talent. “A higher comp, high-end AI engineer” can drive up costs even if the team size stays the same, he explained as reported by CNBC.