Cybercriminals Begin Using ChatGPT to Aid Malware and Fraud Operations
Check Point Research reported that cybercriminals have started experimenting with ChatGPT to support malicious activity, using the tool to generate convincing phishing lures, draft fraudulent business communications, and assist with coding tasks tied to malware development. The report highlighted examples from underground forums showing threat actors discussing how large language models could lower the barrier for less-skilled operators by helping produce polished English text and functional code snippets.
Researchers said the observed use was still early-stage, but the activity showed how generative AI could accelerate common cybercrime workflows, including social engineering, scripting, and evasion-oriented development. The findings underscored a growing risk for defenders: AI tools are being adapted not only for productivity and research, but also to improve the speed, scale, and professionalism of criminal campaigns.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
2 events from the most recent confirmed update back to the earliest known activity.
Threat actors abuse ChatGPT share links to deliver malware
Push Security reported that attackers were using legitimate ChatGPT shared links to host fake OpenAI outage notices that redirected users to a bogus download site serving malware for Windows and macOS. The activity was described as part of the 'LLMShare' campaign and tied to broader abuse of AI platform sharing features for malware and ClickFix-style lures.
Check Point reports cybercriminal interest in using ChatGPT
Check Point Research published findings describing early signs that cybercriminals were starting to use ChatGPT, marking a new development in how generative AI could be applied to malicious activity.
Sources
3 references tracked. Mallory keeps watching after this page renders.
ChatGPT share links abused to host fake outage pages to deliver malware
bleepingcomputer.com
Open sourceCybercriminals can’t agree on GPTs | SOPHOS
news.sophos.com
Open sourceOPWNAI : Cybercriminals Starting to Use ChatGPT - Check Point Research
research.checkpoint.com
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
Cybercrime Forums Show Skepticism Toward Criminal GPT Services
Sophos X-Ops found that cybercrime forums including Exploit, XSS, Breach Forums, and Hackforums are discussing large language models, but adoption remains limited and cautious. Researchers observed multiple GPT-branded services marketed to criminals—such as **WormGPT**, **FraudGPT**, **Evil-GPT**, **DarkGPT**, **WolfGPT**, **BlackHatGPT**, **HackBot**, **PentesterGPT**, **PrivateGPT**, and **XXXGPT**—yet many forum users questioned whether the tools were effective, accused some offerings of being scams, or dismissed them as little more than jailbreak prompts wrapped in criminal branding. The activity that did appear was largely experimental rather than operational. Sophos reported that most observed uses focused on social engineering, routine coding help, jailbreak attempts, and trading compromised ChatGPT accounts, while examples of AI-generated malware or attack tooling were rare, generally unsophisticated, and often Python-based. Forum participants also raised concerns that using ChatGPT could expose their activity to monitoring, leak operational details, or strengthen defensive systems, prompting some to favor offline or self-hosted models instead of mainstream AI services.
Jan 1, 2026
Criminal AI Services Accelerate Phishing, Fraud, and Malware Evasion
Underground operators are increasingly packaging generative AI into **criminal AI-as-a-service** offerings that support phishing, fraud, impersonation, malware modification, translation, and post-breach data analysis. Reporting on the market describes branded tools such as **FraudGPT**, **GhostGPT**, and **WormGPT**, but says many are little more than wrappers around legitimate models, stolen accounts, or hijacked API keys rather than fully autonomous hacking platforms. Researchers also highlighted a parallel market for deepfake-enabled abuse, including voice cloning, face swaps, fake selfies, and virtual camera injection used for KYC bypass, synthetic identity fraud, and onboarding scams. Sophos separately identified a malware development lab using AI tools including **Cursor** and **Claude Opus** to speed ransomware-related coding, payload refinement, and evasion testing. The framework reportedly generated Python-driven Rust and Go malware modules, customized **Cobalt Strike** profiles, Telegram-based command channels, Cloudflare Worker intermediaries for command-and-control traffic, code-injection scripts targeting legitimate Windows applications, and AI-assisted Active Directory reconnaissance. Researchers said the operation tested nearly 80 modules against more than 70 evasion methods across Sophos, CrowdStrike, and Microsoft defenses, reinforcing that the immediate risk is not autonomous AI malware but faster, cheaper, and more scalable attacker workflows.
Jun 18, 2026
Threat Actors Abuse Generative AI for Scams, Influence Operations, and ClickFix Social Engineering
OpenAI reported multiple cases of **malicious use of ChatGPT and related API access** spanning financially motivated fraud and government-aligned information operations, including romance scams, fake legal services, coordinated influence campaigns, and a state-linked harassment effort. In one detailed case (“**Operation Date Bait**”), actors used ChatGPT accounts and an API customer to generate ad copy for a fake dating service, drive victims to *Telegram*, and run semi-automated “missions” that required escalating payments; OpenAI said it banned accounts involved and noted the group’s claimed revenues could not be independently verified. OpenAI also described model use for translation, persona development, and internal coordination (e.g., generating status reports and assigning targets projected payout values), and cited evidence such as repeated text patterns posted by multiple X accounts. Google’s Threat Intelligence Group (GTIG) separately assessed that **nation-state threat actors** are operationalizing LLMs (including *Gemini* and other tools) for reconnaissance, victim targeting, and generating culturally fluent, multi-turn “rapport-building” phishing lures. GTIG also observed abuse of generative AI services’ public sharing features to host deceptive content used in **ClickFix** campaigns, where victims are tricked into copying and pasting malicious commands into a terminal; the activity was first observed in early December 2025. The reporting highlights a converging trend: adversaries are using LLMs to scale and localize social engineering while shifting delivery mechanisms toward trusted AI platforms and shared content features to increase credibility and reach.
Mar 21, 2026