FraudGPT

Incidents involved as Developer

Incident 9481 Report
Alleged FraudGPT-Enabled Phishing Attack Spoofs ChatGPT Subscription Service to Steal Credentials

2025-02-23

A reported phishing campaign is impersonating OpenAI’s ChatGPT Premium subscription service, using AI-generated emails to steal user credentials and financial data. Cybercriminals are allegedly sending fraudulent renewal requests urging victims to update payment details, directing them to spoofed OpenAI login pages.

Incidents involved as Deployer

Incident 7362 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

2023-12-01

A study by Indiana University researchers uncovered widespread misuse of large language models (LLMs) for cybercrime. Cybercriminals, according to that study, use LLMs like OpenAI's GPT-3.5 and GPT-4 to create malware, phishing scams, and scam websites. These models are available on underground markets, often bypassing safety checks through jailbreaking. Named malicious LLMs are BadGPT, XXXGPT, Evil-GPT, WormGPT, FraudGPT, BLACKHATGPT, EscapeGPT, DarkGPT, and WolfGPT.

Incidents implicated systems

Incident 9481 Report
Alleged FraudGPT-Enabled Phishing Attack Spoofs ChatGPT Subscription Service to Steal Credentials

2025-02-23

A reported phishing campaign is impersonating OpenAI’s ChatGPT Premium subscription service, using AI-generated emails to steal user credentials and financial data. Cybercriminals are allegedly sending fraudulent renewal requests urging victims to update payment details, directing them to spoofed OpenAI login pages.

Related Entities

Cybercriminals

Incidents involved as Deployer

BadGPT

Incidents involved as Deployer

Incident 736
2 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

XXXGPT

Incidents involved as Deployer

Incident 736
2 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

Evil-GPT

Incidents involved as Deployer

Incident 736
2 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

WormGPT

Incidents involved as Deployer

Incident 736
2 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

BLACKHATGPT

Incidents involved as Deployer

Incident 736
2 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

EscapeGPT

Incidents involved as Deployer

Incident 736
2 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

DarkGPT

Incidents involved as Deployer

Incident 736
2 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

WolfGPT

Incidents involved as Deployer

Incident 736
2 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

OpenAI

Incidents involved as Developer

internet users

Incidents Harmed By

Incident 736
2 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

Organizations

Incidents Harmed By

Incident 736
2 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

Individuals targeted by malware

Incidents Harmed By

Incident 736
2 Reports
Underground Market for LLMs Powers Malware and Phishing Scams

scammers

Incidents involved as Deployer

Fraudsters

Incidents involved as Deployer

Phishing scammers

Incidents involved as Deployer

FraudGPT operators

Incidents involved as Deployer

Dark Web threat actors

Incidents involved as Deployer

OpenAI users

Incidents Harmed By

ChatGPT Premium subscribers

Incidents Harmed By

ChatGPT

Incidents implicated systems