AI in Cybercrime: State Hackers Refine Attacks, OpenAI Says

A new threat report from OpenAI reveals that state-sponsored hackers and cybercriminals are using AI to enhance existing attack methods rather than invent new ones. Government-linked groups have been observed using large language models for reconnaissance, crafting phishing emails, and improving malware development workflows. The report also details how organized scam centers use AI to generate convincing fraudulent content and manage their illicit day-to-day operations. Researchers highlighted the dual-use challenge, where threat actors bypass safety measures by requesting seemingly harmless code that is later assembled for malicious purposes. Despite this misuse, OpenAI notes that its models are used up to three times more often by the public to identify and avoid scams than to create them.

Latest mentioned: 10-07

Earliest mentioned: 10-07

Sources

theregister.com cyberscoop.com cybersum.net

Also Read

BRONZE BUTLER Exploits LANSCOPE Zero-Day for Data Theft

In mid-2025, Secureworks CTU researchers uncovered a sophisticated cyber campaign by the BRONZE BUTLER group, exploiting a zero-day vulnerability in Motex LANSCOPE Endpoint Manager. This group, active since 2010, has a history of targeting specific organizations and government entities. The vulnerability, CVE-2025-61932, allows remote attackers to execute arbitrary commands with SYSTEM privileges. The campaign involved deploying Gokcpdoor and Havoc C2 frameworks, using legitimate tools like goddi and 7-Zip for data exfiltration. International cybersecurity authorities quickly responded, highlighting the severity of the threat.

10-31Read more →