Carding Forum
Professional
- Messages
- 2,788
- Reaction score
- 1,170
- Points
- 113
Phishing tactics are becoming more sophisticated thanks to clever algorithms.
Symantec recorded an increase in the number of attacks in which attackers use large language models (LLMs) to create malicious code. These models, which were originally intended for generating texts, can also be used for illegal purposes.
In one of the recent campaigns, attackers sent phishing emails with attached ZIP archives containing malicious LNK files. These files, when launched, activated PowerShell scripts generated using LLM, which led to the installation of malware.
In another attack, attackers used LLM to generate HTML code that was executed when a malicious attachment was opened. This code loaded additional payloads. The HTML file was small and loaded quickly, making it harder to detect.
After opening the attachment, the user saw a simple web page, while the malware was already running in the background. This campaign used malware such as Dunihi, ModiLoader, and LokiBot.
Thus, AI can not only revolutionize the world, but also cybercrime. LLM-based tools reduce the entry threshold for attackers and increase the level of their attacks. Symantec continues to fight new threats, providing protection against attacks likely generated using LLM.
Source
Symantec recorded an increase in the number of attacks in which attackers use large language models (LLMs) to create malicious code. These models, which were originally intended for generating texts, can also be used for illegal purposes.
In one of the recent campaigns, attackers sent phishing emails with attached ZIP archives containing malicious LNK files. These files, when launched, activated PowerShell scripts generated using LLM, which led to the installation of malware.
In another attack, attackers used LLM to generate HTML code that was executed when a malicious attachment was opened. This code loaded additional payloads. The HTML file was small and loaded quickly, making it harder to detect.
After opening the attachment, the user saw a simple web page, while the malware was already running in the background. This campaign used malware such as Dunihi, ModiLoader, and LokiBot.
Thus, AI can not only revolutionize the world, but also cybercrime. LLM-based tools reduce the entry threshold for attackers and increase the level of their attacks. Symantec continues to fight new threats, providing protection against attacks likely generated using LLM.
Source