AI-Powered Cyberattacks Leverage ChatGPT for Phishing

A state-aligned threat actor is using AI platforms like ChatGPT to enhance sophisticated cyberattacks against global organizations. The group conducts advanced spear-phishing campaigns, using AI to craft fluent, multilingual emails to build rapport with targets before deploying malware. Technical analysis of their custom malware, GOVERSHELL, reveals unusual development patterns and artifacts suggesting AI-assisted creation. The attackers create fabricated personas and organizations to socially engineer victims into downloading malicious payloads. This activity represents a significant evolution in automated social engineering and espionage threats.

Latest mentioned: 10-09

Earliest mentioned: 10-09

Sources

securityonline.info gbhackers.com

Also Read

Beast Ransomware Emerges as Major Cyber Threat

Beast ransomware, a sophisticated Ransomware-as-a-Service (RaaS) operation, has emerged as a significant cybersecurity threat. It employs aggressive network propagation tactics using SMB port scanning to infiltrate and encrypt systems across enterprise environments. The ransomware has targeted organizations worldwide since July 2025, affecting diverse sectors including manufacturing, healthcare, and education. It uses phishing campaigns and the Vidar Infostealer to gain initial access. The malware includes geofencing logic to exclude certain regions, suggesting connections to specific geographical areas. It utilizes the ChaCha20 algorithm for encryption and includes a hidden GUI for manual control. Organizations must prioritize preventive measures and early detection capabilities to defend against this threat.

10-29Read more →