There have been several reports recently about cybercriminals using AI-powered tools for malicious purposes which can give a paradise of information for nefarious purposes.
Some of the recently popular malicious AIs include FraudGPT, WormGPT, XXXGPT, and WolfGPT.
During an analysis, FraudGPT was found to be promoted by a person who goes under the name “CanadianKingpin12”.
Investigations revealed that the person tried to sell FraudGPT on open internet sites but due to the prohibition of “hard fraud” discussions and policy violations, his account was banned on some forums.
This made them make a leap into decentralization in Telegram which prevents further bans.
As per the video evidence obtained from the threat actor, it was revealed that FraudGPT was capable of a diverse range of attacks including Business Email Compromise (BEC) emails, detailed carding information, Undetectable Spoof SMSes from Banks along with malicious links.
DarkBART & DarkBERT Vs WormGPT & FraudGPT
On conversing with the threat actor, he revealed certain information like FraudGPT has much more capabilities than other AIs but however it was based on WormGPT.
In addition, he mentioned that he is in possession of two other bots DarkBART (Dark version of Google Bart AI) and DarkBERT (specialized in all categories of its own and trained on DarkWeb).
When asked about API integration access, the threat actor responded that for FraudGPT it might be possible in the near future but for BART and BERT, they already have API integration which can be integrated with Google Lens.
DarkBERT
DarkBERT was created by a data intelligence company called S2W based out of South Korea. It was specifically trained with a large amount of dark web information but only for combating cybercrime.
However, as per the claim from “CanadianKingpin12” it can be assumed that the threat actor has been developing the tool, especially for malicious purposes.
Additionally, the threat actor also provided a video of the DarkBERT tool which shows that it has been deliberately configured for cybercrime activities.
Furthermore, a complete report has been published by SlashNext which shows the previous versions, capabilities, technical analysis, and related information about these AI-powered cybercrime tools.
AIs have been emerging exponentially ever since its introduction and several AI versions have been released recently. With the increase of malicious AIs, it is becoming hard for security professionals to prevent cybercrime activities.
It is recommended that users stay updated information on cybercrime attempts and protect themselves from malicious activities.
Source: https://cybersecuritynews.com/ai-powered-cybercrime-tools/