Connect with us

Hi, what are you looking for?

White Papers

Cybercrime AI experimentation prevalent in the dark web – Kaspersky study

In 2023, Kaspersky Digital Footprint Intelligence service discovered nearly 3000 posts on the dark web, discussing the use of ChatGPT for illegal purposes or talking about tools that rely on AI technologies. Even though chatter peaked in March, discussions persist. 

Kaspersky’s Digital Footprint Intelligence service has found nearly 3,000 dark web posts mainly discussing use of ChatGPT and other LLMs for illegal activities. Threat actors are exploring schemes, from creating nefarious alternatives of the chatbot to jailbreaking the original and beyond. Stolen ChatGPT accounts and services offering their automated creation en masse are also flooding dark web channels, reaching another 3000 posts. 

In 2023, Kaspersky Digital Footprint Intelligence service discovered nearly 3000 posts on the dark web, discussing the use of ChatGPT for illegal purposes or talking about tools that rely on AI technologies. Even though chatter peaked in March, discussions persist. 

“Threat actors are actively exploring various schemes to implement ChatGPT and AI. Topics frequently include the development of malware and other types of illicit use of language models, such as processing of stolen user data, parsing files from infected devices, and beyond. The popularity of AI tools has led to the integration of automated responses from ChatGPT or its equivalents into some cybercriminal forums. In addition, threat actors tend to share jailbreaks via various dark web channels – special sets of prompts that can unlock additional functionality – and devise ways to exploit legitimate tools, such as those for pentesting, based on models for malicious purposes,” explained Alisa Kulishenko, digital footprint analyst at Kaspersky.  Apart from the chatbot and artificial intelligence mentioned, considerable attention is being given to projects like XXXGPT, FraudGPT, and others. These language models are marketed on the dark web as alternatives to ChatGPT, boasting additional functionality and the absence of original limitations.

Stolen ChatGPT accounts for sale 

Advertisement. Scroll to continue reading.

One more threat for users and companies is the market for accounts for the paid version of ChatGPT. In 2023, another 3000 posts (in addition to the previously mentioned ones) advertising ChatGPT accounts for sale were identified across the dark web and shadow Telegram-channels. These posts either distribute stolen accounts or promote auto-registration services massively creating accounts on request. Notably, certain posts were repeatedly published across multiple dark web channels.

The dynamics of dark web posts offering stolen ChatGPT accounts or auto-registration services. Source: Kaspersky Digital Footprint Intelligence

“While AI tools themselves are not inherently dangerous, cybercriminals are trying to come up with efficient ways of using language models, thereby fueling a trend of lowering the entry barrier into cybercrime and, in some cases, potentially increasing the number of cyberattacks. However, it’s unlikely that generative AI and chatbots will revolutionize the attack landscape – at least in 2024. The automated nature of cyberattacks often means automated defenses. Nonetheless, staying informed about attackers’ activities is crucial to being ahead of adversaries in terms of corporate cybersecurity”, says Alisa Kulishenko, digital footprint analyst at Kaspersky.

Detailed research is presented on the official Kaspersky Digital Footprint Intelligence website. To avoid threats related to the cybercriminal activities in the shadow segment of the internet, it is worth implementing the following security measures: 

  • Use Kaspersky Digital Footprint Intelligence to help security analysts explore an adversary’s view of their company resources, promptly discover the potential attack vectors available to them. This also helps raise awareness about existing threats from cybercriminals in order to adjust your defenses accordingly or take counter and elimination measures timely.
  • Choose a reliable endpoint security solution such as Kaspersky Endpoint Security for Business that is equipped with behavior-based detection and anomaly control capabilities for effective protection against known and unknown threats.
  • Dedicated services can help combat high-profile attacks. The Kaspersky Managed Detection and Response service can help identify and stop intrusions in their early stages, before the perpetrators achieve their goals.  If you encounter an incident, Kaspersky Incident Response service will help you respond and minimize the consequences, in particular – identify compromised nodes and protect the infrastructure from similar attacks in the future.

Advertisement
Advertisement
Advertisement

Like Us On Facebook

You May Also Like

White Papers

Originating from organized crime gangs in China, the new kits provide the technical components needed to implement a specific pig butchering scheme called “DeFi...

HEADLINES

One in two cybersecurity professionals were not able to confirm the usefulness of their academic training when it came to helping them in their...

HEADLINES

Local threats are malware spread through removable media such as flash drives, even CDs and DVDs and other "offline" methods. Worms and file viruses...

HEADLINES

“When it comes to cyber dating, ika nga #Budol is real. We don’t want to find ourselves in the situation where we’re heart broken and...

HEADLINES

According to the study – which interviewed 1,000 people in 21 countries around the world – online daters are keen to take steps to...

HEADLINES

Seven individuals in Quezon City were apprehended for defrauding GCash customers.

HEADLINES

The Security Priorities 2024 report reveals the pressing issues that IT and security leaders must prioritize and advocates for a pivot from traditional, reactive security postures...

HEADLINES

In a study by Kaspersky on digital privacy, almost half of respondents (41%) said they apply additional measures when browsing the Internet to hide their information...

Advertisement