New Black Hat AI Tool Evil-GPT Vs. WormGPT
In recent years, the world witnessed the remarkable potential of the Generative pre-trained Transformer (GPT) architecture in different fields, from natural language processing to content creation. However, this same technology has found a malicious application in the hands of cyber attackers, giving birth to WormGPT and Evil-GPT. This malevolent AI tool harnesses the power of chatGPT to craft sophisticated phishing emails, deceive users with convincingly authentic messages, and generate highly personalized social engineering attacks. The introduction of WormGPT and Evil-GPT malevolent AI poses a pressing concern, as it leverages AI-generated content to exploit human psychology and breach digital defenses.
What is WormGPT?
WormGPT is a malicious Artificial Intelligence (AI) chatbot built on the open-source GPT-J Large Language Model (LLM). It can interpret and respond to natural language text in English, French, Chinese, Russian, Italian, and Spanish. WormGPT is allegedly trained on malware-related training data and has no content moderation guidelines, meaning threat actors can use it to create phishing scams and malicious code.
Features of WormGPT
WormGPT presents several key features that are readily available to users:
➔ Malicious Counterpart of ChatGPT: WormGPT is a harmful version of ChatGPT, primarily employed for illicit activities like hacking and payment scams.
➔ GPT-J Model Foundation: The underlying technology of WormGPT is built upon the GPT-J model, initially developed by EleutherAI.
➔ Absence of Ethical or Legal Constraints: WormGPT operates without any ethical or legal limitations, granting users unrestricted freedom in their actions.
➔ Dark Web Accessibility: This AI cannot be directly accessed via regular web browsing; it is exclusively accessible through the dark web.
➔ Enhanced Text Generation: WormGPT excels in generating human-like text, surpassing the text generation capabilities of ChatGPT.
What is Evil-GPT?
Evil-GPT is a malevolent Artificial Intelligence (AI) chatbot that is being advertised within hacker forums. Similar to its counterpart, WormGPT, Evil-GPT is programmed entirely in the Python programming language. This new malicious AI chatbot is marketed by a user named Amlo in these forums.
Amlo’s advertisements for Evil-GPT reveal an astonishing price point of $10, which boldly proclaims as an “Unbeatable” price tag. This low cost is intended to attract potential buyers and indicates that malicious AI is being offered as an affordable tool for those seeking to engage in malicious activities.
Features of Evil-GPT
The marketing of Evil-GPT, the malicious AI chatbot, stands out due to the following distinctive features, highlighting its malicious purpose in clear contrast to its predecessors:
➔ Playful Personality: Evil-GPT has a slightly mischievous demeanor, creating an engaging and unique chat experience.
➔ Powered by ChatGPT 3.5 Turbo: The chatbot’s responses are generated using the chatGPT 3.5 turbo model, enabling it to analyze and understand human language effectively.
➔ Explicit Pricing: Evil-GPT is promoted with a remarkably low $10 price tag, indicating its affordability and potentially encouraging illicit usage.
➔ Unlimited Character Support: Evil-GPT can generate text of any length, which makes it ideal for creating long and complex documents, such as phishing emails or malware code.
➔ Chat Memory Retention: Evil-GPT can remember the context of previous conversations, which allows it to generate more natural and coherent responses.
➔ Code Formatting: Evil-GPT can format code in various programming languages, making it useful for generating malware or other malicious code.
➔ Generate Advanced Phishing Emails: Evil-GPT can generate realistic phishing emails that are designed to trick people into revealing their personal information.
➔ Launch BEC Attacks: Evil-GPT can be used to launch Business Email Compromise (BEC) attacks, which are a type of phishing attack that targets businesses.
WormGPT Vs. Evil-GPT
Wrap Up
In countering emerging threats such as Evil-GPT and WormGPT, a comprehensive cybersecurity approach is essential. The following key steps help: targeted BEC training for awareness, stringent email verification to thwart phishing, ongoing observability testing for adaptive security, and the reinforcement of defenses through EDR solutions and AV tools. These measures collectively empower organizations to effectively combat evolving cyber risks and ensure the protection of their digital assets.
