A new AI tool named FraudGPT has been developed to create cracking tools, spearphishing emails, writing malicious code and undetectable malware, searching for vulnerabilities, and more. According to the researcher who found this tool, it has been available since at least July 22, 2023, for a monthly subscription rate of $200. The specific large language model (LLM) this tool uses has yet to be determined.
Impact: In addition to creating unique offensive hacking tools and resources, it could allow threat actors to sell more effective phishing-as-a-service (PhaaS) models to potential customers. It also can help bolster the capabilities of threat actors at any level, from novices to professionals.
Recommendation: It is recommended that organizations apply a defense-in-depth strategy with telemetry capable of quickly analyzing potential threats to keep pace with the ever-changing threat landscape of potential cyber threats.