Iranian are weaponizing ChatGPT and Gemini for cyberattacks on the US and Israel: Report

Iranian hackers are using western AI models like ChatGPT and Gemini in order to turbocharge the country’s cyber operations against US and Israel, according to a new report by the Financial Times. Reportdly, the hackers are turning to AI to develop malware, craft phishing messages in perfect Hebrew and Arabic and building fake online personas capable of targeting victims at a much larger scale than before.

Reportedl, cybersecurity analysts have observed signs that Iranian threat actors are using AI tools throughout various stages of their operations.

“We are seeing signs that they are using AI prompts the entire way,” a cybersecurity analyst told the publication. “It has absolutely helped them raise their game.”

How is Iran using ChatGPT and Gemini:

Reportedly, Iran’s use of AI tools has helped keep up the pressure on US and Israel during the ceasefire by scanning the internet for enemy vulnerabilities while safeguarding Iran’s own weaknesses

UAE has also previously said that it was facing more than half a billion cyber attacks ever day abetted by ChatGPT. Meanwhile, Israeli citizens have also reported being spammed with relentless waves of phishing texts and emails, with some messages even explicitly inviting targets to collaborate with Iranian intelligence.

The report notes that while Iranian hackers have experimented with AI for years, the generative AI models getting more powerful has made them more threatening.

“This is all being done automatically,” Gil Messing at Israeli cyber security firm Check Point told FT, “They are using every tool they can in order to expedite their efforts through AI.”

The attackers reportedly rely on convincing unwitting targets to click on dodgy links. However, the process is said to take weeks of chatting with targets under a fake identity in order to buidl trust and coax them in to making a mistake..

“If you are from Tehran and trying to pretend to be the HR person at a defence contractor, it is a heavy lift to talk to someone for a month and come off as a person living in California,” Check Point told the publication

In a statement to FT, OpenAI said, “Where we identify harmful activity, we take enforcement action, including disabling accounts, terminating access, or limiting capabilities being abused,”