AI in practice
Matthias Bastian

Cybercriminals are upgrading WormGPT with new AI models to power more advanced attacks

Matthias is the co-founder and publisher of THE DECODER, exploring how AI is fundamentally changing the relationship between humans and computers.
Profile
E-Mail

Cybercriminals are upgrading WormGPT with stronger AI models. The original WormGPT, which launched in June 2023, used the open source GPT-J model to create a censorship-free LLM for cybercrime. Now, Cato CTRL reports that two new versions have surfaced on BreachForums: "keanu-WormGPT," which actually taps Grok from xAI through its API using a custom jailbreak, and "xzin0vich-WormGPT," which runs on Mixtral from Mistral AI. Both are distributed via Telegram and get around the original models' safeguards by manipulating system prompts. This lets them generate phishing emails, malicious code, and other attack tools. Cato calls this a "significant shift" in the misuse of large language models.

Ad
WormGPT now comes in new variants powered by Grok and Mixtral, making it easier for cybercriminals to create phishing emails and malicious code. | Image: Cato Networks
Support our independent, free-access reporting. Any contribution helps and secures our future. Support now:
Bank transfer
Sources
Cato CTRL
Matthias is the co-founder and publisher of THE DECODER, exploring how AI is fundamentally changing the relationship between humans and computers.
Profile
E-Mail
AI and society

ChatGPT scams range from silly money-making ploys to calculated political meddling

News, tests and reports about VR, AR and MIXED Reality.
What happens next with MIXED My personal farewell to MIXED Meta and Anduril are now jointly developing XR headsets for the US military MIXED-NEWS.com
AI and society

NGO warns against British murder prediction system: "chilling and dystopian"

AI research

AI agents can be easily tricked into doing stupid things, study says

Google News
Join our community
Join the DECODER community on Discord, Reddit or Twitter - we can't wait to meet you.
Join our community
Join the DECODER community on Discord, Reddit or Twitter - we can't wait to meet you.

Cybercriminals are upgrading WormGPT with new AI models to power more advanced attacks

Bank details

IBAN: DE87 1203 0000 1086 0070 75
Account holder: DEEP CONTENT GbR
Purpose: Support THE DECODER
AI research

New Othello experiment supports the world model hypothesis for large language models

AI in practice

ChatGPT might be draining your brain, MIT warns - what ‘cognitive debt’ means for you

AI research

Meta's latest model highlights the challenge AI faces in long-term planning and causal reasoning

Google News