Europol reported that threat actors have already been leveraging ChatGPT to facilitate cybercrimes and other fraudulent activity, with malicious usage of the AI chatbot expected to further increase, according to The Register.
Aside from enabling phishing and disinformation operations, ChatGPT could also be exploited to generate malicious code, reducing the barrier to entry for malware development, noted Europol in its report.
"For a potential criminal with little technical knowledge, this is an invaluable resource. At the same time, a more advanced user can exploit these improved capabilities to further refine or even automate sophisticated cybercriminal modi operandi," Europol said.
Europol also warned that further development of AI features could prompt the emergence of illicit large language models on the dark web.
"Finally, there are uncertainties regarding how LLM services may process user data in the future will conversations be stored and potentially expose sensitive personal information to unauthorized third parties? And if users are generating harmful content, should this be reported to law enforcement authorities?" said Europol.
BBC reports that nearly 90 organizations have notified the UK's Information Commissioners Office regarding data breaches concerning major business outsourcing firm Capita, which was impacted by a cyberattack in March and was later found to have a long-exposed data server.
Arbitrum-based decentralized finance project Jimbos Protocol had more than $7.5 million worth of Ethereum stolen following a flash loan attack that involved the exploitation of a vulnerability in its code, Cryptonews reports.
Numerous web browsers and cryptocurrency wallets on Windows systems are being targeted by the new Bandit Stealer information-stealing malware, which could also evade Windows Defender, and be used to facilitate data breaches, account takeovers, identity theft, and credential stuffing attacks, reports The Record, a news site by cybersecurity firm Recorded Future.