According to the latest findings from cybersecurity experts, there has been an alarming increase in the utilization of ChatGPT and its darker counterpart, WormGPT, to execute sophisticated business email compromise (BEC) attacks.
Business email compromise (BEC) is a type of cybercrime where scammers use the email to deceive individuals into sending money or disclosing sensitive and confidential company information. WormGPT is capable of generating sophisticated phishing emails.
The threat actors in this case exploit the interfaces of ChatGPT and comparable AI tools, employing specialized prompts to manipulate and infiltrate AI systems.
Adding to the complexity of the AI-driven realm of cybersecurity, cybercriminals have taken it a step further by crafting their own user-friendly AI modules, bearing a striking resemblance to ChatGPT.
Successful phishing attacks can lead to data breaches. A data breach is the unauthorised access/release of sensitive data/information.
Data breaches have recently impacted companies from different sectors and regions. Razer, a well-known gaming firm, encountered a data breach, with an unidentified individual on a hacker’s forum allegedly seeking to sell the stolen data for a sum of US$100,000 in cryptocurrency.
HCA Healthcare, among the largest companies in the United States, was also hit by a data breach where the affected data is currently up for sale. The extensive dataset, comprising around 27 million entries, encompasses highly sensitive information, including personal details of patients and records of their visits.
In Malaysia, Telekom Malaysia (TM) recently alerted their customers that a data breach have affected some of their customers.