---
title: "Malicious Actors Embrace AI Chatbots for Advanced Cyber Attacks | Phish Protection"
description: "Malicious Actors Embrace AI Chatbots for Advanced Cyber Attacks: With the inception of generative AI tools, the cybersecurity landscape is witnessing an."
image: "https://phishprotection.com/og/blog/malicious-actors-embrace-ai-chatbots-for-advanced-cyber-attacks.png"
canonical: "https://phishprotection.com/blog/malicious-actors-embrace-ai-chatbots-for-advanced-cyber-attacks/"
---

Quick Answer

With the inception of generative AI tools, the \[cybersecurity\](/content/cybersecurity-in-a-nutshell) landscape is witnessing an alarming trend. Threat actors are leveraging the power of \*\*AI chatbots\*\* for malicious purposes, further streamlining malware attack mechanisms.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fmalicious-actors-embrace-ai-chatbots-for-advanced-cyber-attacks%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Malicious%20Actors%20Embrace%20AI%20Chatbots%20for%20Advanced%20Cyber%20Attacks&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fmalicious-actors-embrace-ai-chatbots-for-advanced-cyber-attacks%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fmalicious-actors-embrace-ai-chatbots-for-advanced-cyber-attacks%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fmalicious-actors-embrace-ai-chatbots-for-advanced-cyber-attacks%2F&title=Malicious%20Actors%20Embrace%20AI%20Chatbots%20for%20Advanced%20Cyber%20Attacks "Share on Reddit") [ ](mailto:?subject=Malicious%20Actors%20Embrace%20AI%20Chatbots%20for%20Advanced%20Cyber%20Attacks&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fmalicious-actors-embrace-ai-chatbots-for-advanced-cyber-attacks%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2023/08/phishing-prevention-tips-4544.jpg) 

With the inception of generative AI tools, the [cybersecurity](/content/cybersecurity-in-a-nutshell) landscape is witnessing an alarming trend. Threat actors are leveraging the power of **AI chatbots** for malicious purposes, further streamlining malware attack mechanisms.

Online adversaries have already produced the infamous WormGPT, a clone of ChatGPT **trained on malware data**. Also, a new malicious tool called FraudGPT raises concerns among cybersecurity experts. A threat actor known as CanadianKingpin12 developed this tool and customized it for malicious actors, fraudsters, and spammers. That empowers them to launch devastating [online attacks](https://themalaysianreserve.com/2023/07/26/alarming-rise-in-online-attacks-malaysias-cyber-security-landscape-in-2023/).

The latest among the AI-based malicious digital weapons are DarkBART and DarkBERT. Such widespread availability of [AI generative tools](https://www.c4isrnet.com/artificial-intelligence/2023/04/12/ai-tools-like-chatgpt-likely-to-empower-hacks-nsa-cyber-boss-warns/) has increased the potential of **AI phishing attacks** across the globe.

### The Rise of Next-gen Cybercrime Chatbots

Threat actors are **training chatbots** using data from the dark web and sophisticated language models designed to combat cybercrime. \_[DarkBART](https://www.bleepingcomputer.com/news/security/cybercriminals-train-ai-chatbots-for-phishing-malware-attacks/#:~:text=Both%20AI%2Dpowered%20bots%20are,exploiting%20vulnerabilities%20and%20creating%20malware.), one of these malicious chatbots, stands out as a “dark version” of Google’s conversational AI, Bard. Exploring the activities of CanadianKingpin12, the threat actor behind such malicious AI bots, cybersecurity experts have discovered that the development is highly concerning .

The focus of CanadianKingpin12 lies beyond FraudGPT and DarkBART. Online adversaries also have **access to DarkBERT**, another language model originally trained on [dark web data](https://thehackernews.com/2023/03/new-cyber-platform-lab-1-decodes-dark.html) by South Korean researchers to fight cybercrime. The corrupted version of this bot used by the attackers outperforms others and comes loaded with capabilities like carrying out sophisticated phishing attacks.

![Phishing prevention tips](https://media.mailhop.org/phishprotection/images/2023/08/phishing-prevention-tips-4544.jpg) 

Besides, the tool has been designed to execute **advanced social engineering attacks** and exploit system vulnerabilities. These advanced systems can distribute malware and leverage [zero-day](/content/zero-day-protection/zero-day-attack-example) vulnerabilities for financial gain.

#### The Convergence of AI and Cybercrime

With the rise of generative AI tools, the cybersecurity landscape is facing an alarming trend. Malicious actors are exploiting [AI chatbots](https://www.foxnews.com/tech/your-secrets-not-so-safe-ai-chatbots-chatgpt), streamlining malware attacks, and escalating AI phishing threats worldwide. From the emergence of **dangerous clones** like WormGPT and FraudGPT to the development of menacing bots like DarkBART and DarkBERT, the potential for devastating cyber attacks is increasing.

As threats powered by artificial intelligence evolve, the conflict between cybersecurity experts and harmful actors intensifies. This escalating situation calls for **innovative defenses**, including [anti-phishing](/content/anti-phishing-software/anti-phishing-techniques) measures, and collaborative efforts to ensure robust protection. With the implementation of such strategies, we can keep pace with the rapidly changing cybersecurity landscape.

### A Looming Cybersecurity Threat: The Future of Cybercrime and Artificial Intelligence

> “Zero-day phishing URLs have an average lifespan of just 12 hours before they’re added to blocklists. During that window, traditional signature-based filters are blind. Our real-time behavioral analysis catches these threats by pattern, not by signature - which is how we detect attacks that no database has seen yet.” - **Adam Lundrigan**, CTO, DuoCircle

Integrating live internet access and Google Lens image processing features makes phishing scams and [malware attacks](https://www.scmagazine.com/brief/merlinagent-malware-attacks-hit-ukrainian-government-agencies) even more menacing. The growing trend of AI chatbot exploitation is alarming. Besides, minor threat actors are now accessing these **advanced tools**, which makes them a significant threat to victims.

With the rapid development of FraudGPT and

DarkBART

, experts predict a **challenging future** in the global cybersecurity landscape. _For [malicious actors](/phishing/malicious-actors-exploit-commenting-feature-in-google-docs-to-send-phishing-emails), easy access to such advanced tools paves the way to more sophisticated and extensive attacks._

#### Defending Against AI Phishing

Countering AI phishing attacks calls for a proactive approach. Static security measures may prove inadequate against evasive chatbots. ML algorithms empower [malicious tools](https://www.infosecurity-magazine.com/news/chatgpt-develop-malicious-tools/) to learn from interactions, adapt strategies, and **evade detection systems**. That makes them formidable opponents in the world of cybersecurity.

Cybersecurity experts must emphasize exploring **AI-based defensive measures** to stay ahead in the race. The implementation of AI-powered cybersecurity solutions, which include mechanisms for [phishing protection](/), will serve as a practical approach to identifying and neutralizing new and unidentified cyber threats. This strategy will support organizations in maintaining a strong defensive stance in the face of evolving cyber risks.

![Spear phishing protection](https://media.mailhop.org/phishprotection/images/2023/08/spear-phishing-protection-7697.jpg) 

### How Does The Evolving Arms Race: Cybersecurity Compare to Malicious AI?

As the deployment of [AI-powered chatbots for cybercrime](https://www.crn.com/news/security/chatgpt-is-a-powerful-tool-for-cybercrime-recorded-future) gains momentum, cybersecurity professionals will be engaged in an escalated arms race against these malicious players. With the advent of evasive AI chatbots, traditional security systems will be rendered **powerless**. Therefore, cybersecurity experts must adapt strategies to develop effective countermeasures to handle these emerging threats.

Countering AI phishing attacks

calls for a proactive approach. Static security measures may prove inadequate against evasive chatbots. **ML algorithms** empower malicious tools to learn from interactions, adapt strategies, and evade detection systems. That makes them formidable opponents in the world of cybersecurity.

Cybersecurity experts must emphasize exploring AI-based defensive measures to stay ahead in the race. They need to leverage AI and ML to identify patterns, anomalies, and potential threats more accurately and quickly. The use of [AI-powered cybersecurity solutions](https://www.sdxcentral.com/articles/news/aixcc-competition-offers-18m-for-ai-driven-cybersecurity-solutions/2023/08/) will be an effective way to detect and mitigate new and unknown cyber threats and help organizations maintain a **robust defensive posture**.

Cybersecurity experts, researchers, and organizations must closely coordinate to counter emerging AI-based cyber threats. [Sharing threat intelligence](https://thehackernews.com/2022/12/the-era-of-cyber-threat-intelligence.html) and expertise can also help identify malicious AI chatbot campaigns. That will help experts develop effective countermeasures. _Besides, government agencies, private industry, and academia **must cooperate** to promote the responsible use of AI technology. That should address the emerging challenges that threat actors pose._

#### Uniting Against AI Threats

**Coordination among experts** counters AI-based cyber threats. Shared threat intelligence identifies malicious campaigns. Government, industry, and academia cooperation is vital for responsible AI use.

### Final Words

Digital security is currently under a gnawing threat with the convergence of AI and cybercrime. Given the [advanced phishing attacks](https://wire19.com/advanced-phishing-attacks/) and other threat vectors, robust cybersecurity measures are the need of the hour.

The battle between malicious actors and security experts will intensify as technology advances. Therefore, the innovation of **adequate safeguards**, vigilance, and collaborative measures will be crucial in securing the digital world from potential [threat actors](/phishing-awareness/threat-actors-breach-reddit-and-access-internal-documents-code-and-business-systems).

## Topics

[ Cybersecurity ](/tags/cybersecurity/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 3m  13,000 Singapore-based students affected as a threat actor hacked into their devices!  Aug 16, 2024 ](/blog/13000-singapore-based-students-affected-as-a-threat-actor-hacked-into-their-devices/)[  Intermediate 3m  The 2024 Multi-Nation Elections Need to Steer Clear of Highly Potent Cyber Menaces  May 9, 2024 ](/blog/2024-multi-nation-elections-cyber-threats-stay-vigilant/)[  Intermediate 6m  7 Commonly Overlooked But Crucial Security Threats That You Might be Ignoring  Feb 6, 2023 ](/blog/7-commonly-overlooked-but-crucial-security-threats-that-you-might-be-ignoring/)[  Intermediate 17m  9+ Cybersecurity Software Solutions For Businesses To Use  May 30, 2022 ](/blog/9-cybersecurity-software-solutions-businesses/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Malicious Actors Embrace AI Chatbots for Advanced Cyber Attacks","description":"Malicious Actors Embrace AI Chatbots for Advanced Cyber Attacks: With the inception of generative AI tools, the cybersecurity landscape is witnessing an.","url":"https://phishprotection.com/blog/malicious-actors-embrace-ai-chatbots-for-advanced-cyber-attacks/","datePublished":"2023-08-09T09:15:51.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2023-08-09T09:15:51.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/malicious-actors-embrace-ai-chatbots-for-advanced-cyber-attacks/"},"articleSection":"intermediate","keywords":"Cybersecurity","wordCount":929,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2023/08/phishing-prevention-tips-4544.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Malicious Actors Embrace AI Chatbots for Advanced Cyber Attacks","item":"https://phishprotection.com/blog/malicious-actors-embrace-ai-chatbots-for-advanced-cyber-attacks/"}]}
```