Malicious ChatGPT Derivative 'FraudGPT' Fuels Dark Web Crime

Cybersecurity research firm Netenrich has identified a new artificially intelligent tool, aptly named FraudGPT, being advertised on the Dark Web. This AI chatbot, believed to be a modified version of OpenAI's ChatGPT, is explicitly designed to support crime.

Researchers found ads for FraudGPT scattered across various Dark Web locations, with the software purportedly on sale for a monthly subscription starting from $200 or an annual subscription of $1,700. Reports indicate that the tool has been promoted via Telegram channels since Saturday.

The malicious actor responsible for FraudGPT reportedly boasts over 3,000 confirmed sales and positive reviews, reflecting a worrying trend among tech-savvy fraudsters.

Like its predecessor, WormGPT, FraudGPT gives criminals a toolset for a range of nefarious activities such as creating convincing fraud emails, executing sophisticated phishing campaigns, generating malicious code, discovering vulnerabilities, writing scam letters, and more.

Despite this extensive list of capabilities, the tool's primary function centers around helping create credible phishing campaigns. Advertisements on the Dark Web showcase FraudGPT's proficiency in drafting enticing emails that persuade recipients to interact with malicious links.

Traditionally, poor spelling and grammar give away phishing campaigns and scam emails. Automatic translations further degrade the credibility of these fraudulent communications. FraudGPT attempts to circumvent this by crafting well-articulated messages with compelling details and action prompts, such as urging recipients to click on a link immediately or dial a specific phone number.

This revelation may herald a worrying new era of AI-powered cyber-attacks, with an expected surge in malicious ChatGPT derivatives on both the surface web and Dark Web. The automation these tools bring can make phishing emails appear more convincing than ever.

To safeguard against threats like FraudGPT, WormGPT, and their future counterparts, the strategies remain the same as those deployed against traditional, human-driven campaigns. Education on identifying scam or phishing emails remains crucial, alongside increased awareness of the sophisticated tools available to cybercriminals. As the landscape of cyber threats evolves, so must our defenses, emphasizing the importance of ongoing vigilance and knowledge sharing.

Specialized software like Bitdefender Ultimate Security can keep you safe from phishing attempts, scams, and other cyberthreats, with features like:

• 24/7 detection and protection against viruses, worms, Trojans, spyware, rootkits, ransomware, zero-day exploits, and other e-threats
• Anti-phishing module that detects and blocks websites that pose as legitimate ones to steal your data or funds
• Antispam technology that filters irrelevant messages in your local email client's inbox
• Web attack prevention module that blocks known infected links and prevents you from landing on harmful websites