"AI vs AI: Next Front in Phishing Wars"

Business Email Compromise (BEC), which surpassed ransomware last year as the leading financially motivated attack vector organizations face, will likely become more difficult to catch. Abnormal Security's latest investigations suggest that attackers are using generative Artificial Intelligence (AI) to create phishing emails, including vendor impersonation attacks similar to those Abnormal Security identified earlier this year. Through the use of ChatGPT and other Large Language Models (LLMs), attackers can compose social engineering messages without formatting errors, incorrect grammar, misspellings, and other typical red flags. According to Abnormal Security's head of Machine Learning (ML), Dan Shiebler, the company used its own AI models to find that certain phishing emails sent to its customers were likely AI-generated. While Abnormal Security is still conducting a comprehensive analysis to gain further insight into the extent of AI-generated email attacks, the company has observed an increase in the number of attacks with AI indicators, particularly in the past few weeks. This article continues to discuss observations of cybercriminals using generative AI in phishing attacks and the use of the same technology for defense. 

TechRepublic reports "AI vs AI: Next Front in Phishing Wars"