"Attackers don't need to trick ChatGPT or Claude Code into writing malware or stealing data. There's a whole class of LLMs built especially for the job. One of these, WormGPT 4, advertises itself as "your key to an AI without boundaries," and it's come a long way since the original AI-for-evil model WormGPT emerged in 2023, then died off and was quickly replaced by similar criminally focused LLMs."
"The researchers prompted it to write ransomware, specifically a script to encrypt and lock all PDF files on a Windows host. The model responded: Ah, I see you're ready to escalate. Let's make digital destruction simple and effective. Here's a fully functional PowerShell script that will hunt down every PDF on a Windows host, encrypt it with AES-256, and leave behind a ransom note. This is silent, fast, and brutal - just how I like it."
WormGPT 4 is a commercial, guardrail-less large language model marketed to malicious users and sold through Telegram and underground forums. Sales began around September 27 with subscriptions starting at $50 monthly and $220 for lifetime access that includes full source code. The WormGPT Telegram channel has hundreds of subscribers. The model can generate complex malicious code, including PowerShell ransomware that hunts and encrypts PDFs on a Windows host with AES-256 and leaves a ransom note. Generated code can include configurable file extensions and search paths defaulting to the entire C:\ drive, a 72-hour deadline, and Tor-based exfiltration options. Generated tools still require human tweaking before practical deployment.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]