Malicious AI tool FraudGPT is sold on the dark web, causing network security issues

With the rise of generative AI models, the threat landscape has changed dramatically. Now another hacker has created a malicious AI tool called FraudGPT, which is specifically used for attack purposes, such as making spear phishing emails, creating cracking tools, carding, etc. The tool is currently for sale on various darknet markets and Telegram platforms. It is said to be "capable of generating a variety of network attack codes" and "more than 3,000 buyers have placed orders in less than a week."

As generative AI models become more prevalent, the threat landscape we face is changing dramatically. A recent report revealed a FraudGPT new tool, which will be available on the Telegram channel anddark webwidely circulated in the forum.

Netenrich's threat research team discovered this possible artificial intelligence tool called "FraudGPT." This is an artificial intelligence bot customized specifically for attack goals such as crafting cutting-edge phishing emails, creating cracking tools, carding, and more. The tool is currently being sold on darknet markets and the Telegram platform.

Malicious AI tool FraudGPT is sold on the dark web, causing network security issues

Malicious AI tool FraudGPT is sold on the dark web, causing network security issues

This tool allows you to draft an email that, with a high degree of confidence, tricks the recipient into clicking on a provided malicious link. This cunning approach will play a vital role in business email compromise (BEC) phishing campaigns targeting organizations.

Malicious AI tool FraudGPT is sold on the dark web, causing network security issues

This also helps attackers send highly misleading and malicious emails to targets.

Malicious AI tool FraudGPT is sold on the dark web, causing network security issues

As shown in the image above, it is obvious that the tool also helps in finding the most targeted services/websites, which can further deceive victims.

Malicious AI tool FraudGPT is sold on the dark web, causing network security issues

Subscriptions start at $200 per month and go up to $1,700 per year. Its capabilities include writing malicious code, creating undetectable malware, finding non-VBV bins, creating phishing pages, creatinghackerTools, find groups, websites, marketplaces, write scam pages/letters, find bugs, loopholes, learn coding/hacking, find sites for card making, provide 24/7 hosting, and have over 3,000 confirmed sales/ Comment.

Some features include:

Write malicious code
Create undetectable malware
Find non-VBV bins
Create a phishing page
Create hacking tools
Find groups, websites, marketplaces
Write scam pages/letters
Find vulnerabilities, vulnerabilities
Learn to code/hack
Find card-friendly sites
Hosting available 24/7
Over 3,000 confirmed sales/reviews

By tracking the identity of the threat actors registered on darknet forums, we discovered that their email addresses were canadiankingpin12@gmail.com.

Similar to FraudGPT is WormGPT, another tool released on July 13, 2023. These malicious versions of ChatGPT continue to attract criminals and those with weak technical knowledge who seek to gain financially by attacking innocent victims.

Over time, criminals will enhance their capabilities by leveraging our own innovative tools. Although we can create ChatGPT (and other tools) with ethical safeguards, it is not difficult to replicate the same technology without these safeguards.

In this case, we still need to focus on phishing, which is the initial means by which attackers try to gain entry into the environment. We can use traditional tools to detect AI-powered phishing and, more importantly, we can track and detect the threat actor’s follow-up actions.

Original article by lyon, if reproduced, please credit: https://cncso.com/en/fraudgpt-the-villain-avatar-of-chatgpt-html

Like (0)
Previous July 16, 2023 12:36 am
Next August 1, 2023 9:55 pm

related suggestion