North Korean Hackers Use ChatGPT For Deepfake IDs

State Sponsored Hackers Embrace AI

A hacking group suspected of being sponsored by the North Korean state has reportedly utilized ChatGPT in a sophisticated cyberattack against a target in South Korea. According to cybersecurity experts, this marks a significant development where generative AI tools are actively used to enhance state level cyber operations.

The Deepfake ID Phishing Scheme

The attackers employed the popular AI tool to help create a convincing deepfake of a South Korean military identification card. This fake ID was not just a simple forgery; it was crafted to add a layer of credibility to a targeted phishing attempt. As detailed in research published by Genians, a South Korean cybersecurity firm, the goal was to deceive the recipient. Instead of a harmless image, the email contained a link that, when clicked, deployed malware designed to steal data directly from the victim's device.