FraudGPT: A WormGPT Alternative, Another AI Hacking Tool
In the wake of the malicious WormGPT, a new AI tool named FraudGPT has emerged on the dark web, offering cybercriminals more effective methods for launching phishing attacks and creating malicious code. This tool, which has been circulating on Telegram Channels since July 22, is exclusively targeted for offensive purposes, such as crafting spear-phishing emails, creating cracking tools, and more.
Table of Contents
What is FraudGPT?
FraudGPT is a malicious AI tool that has been developed as an alternative to the popular ChatGPT AI chatbot. It is designed to assist cybercriminals in their malicious activities by providing them with more effective methods for launching phishing attacks and creating malicious code.
Read More About:What is WormGPT? How WormGPT Empowers Cybercriminals?
The Emergence of FraudGPT
Less than two weeks after the emergence of WormGPT, FraudGPT made its appearance. It is being sold on various dark web marketplaces and the Telegram platform through a subscription-based model, with prices ranging from $200 per month to $1,700 per year. According to Netenrich, there have been over 3,000 confirmed sales and reviews of FraudGPT.
Read More About:How to Use WormGPT–Malicious ChatGPT Alternative?
What Can FraudGPT Do?
FraudGPT is not limited to phishing attacks. It also facilitates the writing of malicious code, the creation of undetectable malware and hacking tools, and the discovery of leaks and vulnerabilities in organizations’ technologies. It allows attackers to create convincing emails that increase the likelihood of victims clicking on malicious links, and it helps attackers identify and select their targets.
How to Download and Use FraudGPT?
Currently, FraudGPT is being sold on various dark web marketplaces and the Telegram platform. It is offered through a subscription-based model, with prices ranging from $200 per month to $1,700 per year. However, it’s important to note that the use of such tools is illegal and unethical, and it’s recommended to stay away from them.
Read More About:ChatGPT Android App: Install, Access, and Using Guide
The Threat Actor Behind FraudGPT
The threat actor behind FraudGPT is believed to be the same group that runs WormGPT. This entity is developing multiple tools for different audiences, much like startups trying to find their market with their techniques. However, to date, there are no known active attacks by FraudGPT tools.
Read More About:ChatGPT vs GitHub Copilot, Who is Better?
The Impact on Enterprises
The main focus of FraudGPT is on phishing-based business email compromise (BEC) campaigns against enterprises. These malicious alternatives to ChatGPT continue to attract criminals and less tech-savvy individuals seeking financial gains from targeting victims.
The Role of AI in Cybersecurity
The introduction of AI technologies like ChatGPT has raised concerns among cybersecurity professionals. Such technologies are easily adaptable by threat actors and enable less-skilled attackers to launch campaigns more easily. Furthermore, generative AI tools like FraudGPT have the potential to write code and be used for more than just generating text, posing further security risks.
The Effectiveness of FraudGPT
Some security experts question the effectiveness of FraudGPT and similar AI-based threat tools. The features they offer are not significantly different from what attackers can achieve with ChatGPT, and there is limited research on whether AI-generated phishing lures are more effective than human-generated ones.
The Future of Cybersecurity
While FraudGPT presents a new tool for cybercriminals, the focus should be on the automation of multi-step attacks and the potential for highly sophisticated campaigns using chatbots and deepfake technology. These advancements could further amplify the challenges posed by malware and BEC attacks.
Conclusion
As AI technologies continue to evolve, so do the threats they pose. The emergence of tools like FraudGPT underscores the need for robust cybersecurity measures and the continuous monitoring of emerging threats. As we move forward, it is crucial to stay vigilant and proactive in the face of these evolving cyber threats.
