---
title: "10 Applications of ChatGPT that Hackers Are Already Exploiting | DuoCircle"
description: "Dive deep into the latest in the cybersecurity world and the AI-Bot, ChatGPT."
image: "https://www.duocircle.com/images/og-default.png"
canonical: "https://www.duocircle.com/blog/phishing-protection/10-applications-of-chatgpt-that-hackers-are-already-exploiting/"
---

Quick Answer

Attackers use ChatGPT to draft grammatically clean phishing emails, write Java-based infostealers and polymorphic malware that evades signature-based tools, script social engineering dialogues, build dark web marketplace pages, research vulnerabilities and zero-days, and generate password lists for brute force attacks. CheckPoint researchers documented working samples in underground forums.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=undefined%2Fblog%2Fphishing-protection%2F10-applications-of-chatgpt-that-hackers-are-already-exploiting%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=10%20Applications%20of%20ChatGPT%20that%20Hackers%20Are%20Already%20Exploiting&url=undefined%2Fblog%2Fphishing-protection%2F10-applications-of-chatgpt-that-hackers-are-already-exploiting%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=undefined%2Fblog%2Fphishing-protection%2F10-applications-of-chatgpt-that-hackers-are-already-exploiting%2F "Share on Facebook") [ ](https://reddit.com/submit?url=undefined%2Fblog%2Fphishing-protection%2F10-applications-of-chatgpt-that-hackers-are-already-exploiting%2F&title=10%20Applications%20of%20ChatGPT%20that%20Hackers%20Are%20Already%20Exploiting "Share on Reddit") [ ](mailto:?subject=10%20Applications%20of%20ChatGPT%20that%20Hackers%20Are%20Already%20Exploiting&body=Check out this article: undefined%2Fblog%2Fphishing-protection%2F10-applications-of-chatgpt-that-hackers-are-already-exploiting%2F "Share via Email") 

![spf-permerror-4555](https://media.mailhop.org/duocircle/images/2023/05/spf-permerror-4555.jpg) 

_Dive deep into the latest in the [cybersecurity](/) world and the AI-Bot, ChatGPT, as we share ten different ways hackers use ChatGPT for hacking and **malicious purposes**. Let’s get into it._

**ChatGPT** has changed the digital world, content creation, and everything else within a matter of days, making the jobs of everyone easier on a global scale. But, like every coin, ChatGPT also has a **darker side** that cybercriminals and threat actors have exploited for quite some time. Here are the top 10 ways threat actors are using ChatGPT for hacking. 

## 10 Applications of ChatGPT that Hackers Are Already Exploiting

### 1\. Writing Sophisticated Phishing Emails

Gone are the days when [phishing emails](/content/phishing-prevention/phishing-email) could be recognized by grammatical errors and the failure of cybercriminals to write a convincing note. Threat actors have taken quite a liking to ChatGPT and are **leveraging** the AI bot to write sophisticated phishing emails. 

_These ChatGPT-generated phishing emails are persuasive, sophisticated, and **carefully crafted** with social engineering tactics to make the victim click on malicious links and lose to cybercriminals._ 

[![Phishing Emails](https://media.mailhop.org/duocircle/images/2023/05/sendgrid-alternative-4555.jpg)](/phishing-protection/10-applications-of-chatgpt-that-hackers-are-already-exploiting/attachment/phishing-email-forgery-login-page-email-on-hook-malware-privacy-protection-vector-concept-illustration)

### 2\. Creating Malware to Steal Finances

Despite all the good that it does, ChatGPT is also leveraged by threat actors to create malicious **code and malware**. [Researchers](https://research.checkpoint.com/2023/opwnai-cybercriminals-starting-to-use-chatgpt/) at CheckPoint came across multiple underground cybercriminal gangs utilizing the tool to develop malware.

With Java-based malware and malicious **encryption tools** to facilitate fraud, threat actors have developed basic iterations to steal money and data from innocent individuals. And in a bit of time, they will be able to enhance these tools and carry out attacks on a **large scale**.

### 3\. Evasion of Security Products

[ChatGPT](https://news.trendmicro.com/2023/04/29/chatgpt-phishing-malware-threats-fake-apps/) has an extensive database and can respond rapidly to queries, including debugging. But the feature is not limited to debugging, as you can talk to the ChatGPT to get **responses suited to your problem**. 

Threat actors are exploiting these capabilities and creating [polymorphic malware](https://www.digitalguardian.com/blog/what-polymorphic-malware-definition-and-best-practices-defending-against-polymorphic-malware). This malware can **evade** **top-of-the-line security products** that do not work with real-time intelligence, making entry into a corporate network easier. If a problem does arise, ChatGPT is swift to provide a workaround. 

### 4\. Social Engineering

Threat actors are **not limiting** the use of ChatGPT and using the tool’s capability to mimic human language for [social engineering](/phishing-protection/social-engineering-is-a-growing-threat/) attacks.

Getting answers from the tool or generating academic papers for students is one thing, but asking ChatGPT to write social engineering emails or **give it content** and reply to conversations is **aiding threat actors** in carrying out scams and defrauding innocent individuals worldwide.

Even the most skilled cybersecurity experts are **facing a challenge** to prevent such attacks as it allows [threat actors](/email-security/threat-actors-are-using-google-ads-to-launch-sophisticated-phishing-campaigns/) to adapt to an individual’s behavior or tone. 

[![social engineering attacks](https://media.mailhop.org/duocircle/images/2023/05/phishing-protection.jpg)](https://media.mailhop.org/duocircle/images/2023/05/phishing-protection.jpg)

### 5\. Creating Infostealers

Threat actors can recreate [malware strains](https://thehackernews.com/2022/12/malware-strains-targeting-python-and.html) using the techniques described in publications and articles on the web by feeding this information to ChatGPT and asking it to **write the code**. 

Checkpoint’s researchers confirmed this when they came across a basic **info stealer** that searched for 12 file types, copied the malware onto these files, and sent them over the web to a victim. 

### 6\. Creating Encryption Tools

Threat actors use ChatGPT to create [malware](/resources/malware-and-its-defense-mechanism) and **misuse** it to create malicious encryption tools.

With the **incredible accuracy** and versatility of the AI-powered bot, threat actors have developed sophisticated encryption tools that can aid them in creating **legitimate-looking** email phishing campaigns along with encryption tools to take over a system and encrypt all data, which is the basic premise of ransomware. Once the system is encrypted, the threat actor makes the [ransom demand](https://www.bleepingcomputer.com/news/security/riot-games-receives-ransom-demand-from-hackers-refuses-to-pay/). 

### 7\. Creating Dark Web Marketplaces

Checkpoint highlighted in its research that threat actors have also used the platform to create [dark web](https://www.bleepingcomputer.com/news/security/the-dark-web-is-getting-darker-ransomware-thrives-on-illegal-markets/) marketplaces for fraud. These generated marketplaces can provide a platform for threat actors to **automate the trading** of stolen accounts, cards, services, and goods. Even if these are the early days of ChatGPT, threat actors have left **no expense** on misusing the tool, and it is still gaining more traction. 

### 8\. Practicing with Novel Social Engineering Attack Dialogues

ChatGPT is aiding novice [cybercriminals](https://economictimes.indiatimes.com/news/india/cybercriminals-distributed-over-400k-malicious-files-daily-to-attack-users/articleshow/96155644.cms) to improve social engineering tactics to take on innocent individuals. By communicating with the chatbot and prepping for attack dialogues (inquiries and responses), threat actors are getting adept at understanding what to understand in interaction and **preparing themselves** for attack campaigns, such as preparing themselves to answer questions as customer care or third-party vendors in impersonation. 

### 9\. Exploiting Vulnerabilities and Zero-days

Ask ChatGPT what you want, and it will tell you the best answer. Cybercriminals know this all too well and are using the chatbot’s capabilities and extensive database to ask it how to exploit particular network [vulnerabilities](/email-security/two-zero-day-vulnerabilities-discovered-in-microsoft-exchange-server-patches-pending/) and zero-days. Using ChatGPT, even low-level cybercriminal wannabes can **bypass** sophisticated security networks. 

### 10\. Brute Force Attacks

Threat actors are using the AI chatbot for sophisticated [brute-force attacks](https://www.cloudways.com/blog/what-is-brute-force-attack/). By asking ChatGPT to **create password guesses**, threat actors can save their time and become highly efficient in taking control of accounts for malicious activities. Threat actors have found many alarming ways to exploit the bot’s ability to understand and respond to **natural language**. 

## Final Words

The capability of AI bots (Artificially Intelligent, Bots) and the craze around chatbots saw a **significant spike** in the popularity of ChatGPT. And like every revolutionary tech, cybercriminals have also adopted it for malicious purposes. Only time will answer how cybersecurity [researchers](https://thehackernews.com/2023/05/researchers-uncover-new-bgp-flaws-in.html) will evolve their **tactics to battle** threat actors using ChatGPT.

## Topics

NewsSecurityUpdates 

![Brad Slavin](https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg) 

Brad Slavin 

General Manager

General Manager at DuoCircle. Product strategy and commercial lead across the email security portfolio.

## Secure your email infrastructure

Protect, authenticate, and deliver. Contact our team to find the right solution.

[Contact Sales](/contact/) [Explore Products](/products/) 

## Related Articles

[  Phishing 7m  A Summary of Forescout’s OT: ICEFALL Outlining 56 Vulnerabilities in Vendors Worldwide  Jul 5, 2022 ](/blog/phishing-protection/a-summary-of-forescouts-ot-icefall-outlining-56-vulnerabilities-in-vendors-worldwide/)[  Phishing 6m  Default Email Security Offering Turning Obsolete, a Threat to SMBs and SMEs  Apr 4, 2023 ](/blog/phishing-protection/default-email-security-offering-turning-obsolete-a-threat-to-smbs-and-smes/)[  Phishing 6m  How to be Cyber Smart: The Best Cybersecurity Tips to Empower Your Team this Cybersecurity Awareness Month  Oct 13, 2022 ](/blog/phishing-protection/how-to-be-cyber-smart-the-best-cybersecurity-tips-to-empower-your-team-this-cybersecurity-awareness-month/)[  Phishing 6m  How to Spot Scams Like ‘Boxes Of Money’ Email Scam  Jul 11, 2023 ](/blog/phishing-protection/how-to-spot-scams-like-boxes-of-money-email-scam/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}],"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://www.g2.com/products/phish-protection-by-duocircle/reviews","https://github.com/duocircle","https://www.crunchbase.com/organization/duocircle-llc"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://support.duocircle.com"},"knowsAbout":["Email Security","Email Authentication","SPF","DKIM","DMARC","Phishing Protection","Spam Filtering","SMTP Relay","Email Deliverability","Email Forwarding"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"DuoCircle LLC","url":"https://www.duocircle.com","description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}
```

```json
[{"@context":"https://schema.org","@type":"BlogPosting","headline":"10 Applications of ChatGPT that Hackers Are Already Exploiting","description":"Dive deep into the latest in the cybersecurity world and the AI-Bot, ChatGPT.","url":"https://www.duocircle.com/blog/phishing-protection/10-applications-of-chatgpt-that-hackers-are-already-exploiting/","datePublished":"2023-05-03T16:06:28.000Z","dateModified":"2025-05-14T18:10:23.000Z","dateCreated":"2023-05-03T16:06:28.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/phishing-protection/10-applications-of-chatgpt-that-hackers-are-already-exploiting/"},"articleSection":"phishing-protection","keywords":"News, Security, Updates","wordCount":893,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2023/05/spf-permerror-4555.jpg","caption":"spf-permerror-4555","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}},{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":2,"name":"Phishing"},{"@type":"ListItem","position":3,"name":"10 Applications of ChatGPT that Hackers Are Already Exploiting","item":"https://www.duocircle.com/blog/phishing-protection/10-applications-of-chatgpt-that-hackers-are-already-exploiting/"}]}]
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://www.duocircle.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://www.duocircle.com/blog/"},{"@type":"ListItem","position":3,"name":"Phishing","item":"https://www.duocircle.comundefined"},{"@type":"ListItem","position":4,"name":"10 Applications of ChatGPT that Hackers Are Already Exploiting","item":"https://www.duocircle.com/blog/phishing-protection/10-applications-of-chatgpt-that-hackers-are-already-exploiting/"}]}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"10 Applications of ChatGPT that Hackers Are Already Exploiting","description":"Dive deep into the latest in the cybersecurity world and the AI-Bot, ChatGPT.","url":"https://www.duocircle.com/blog/phishing-protection/10-applications-of-chatgpt-that-hackers-are-already-exploiting/","datePublished":"2023-05-03T16:06:28.000Z","dateModified":"2025-05-14T18:10:23.000Z","dateCreated":"2023-05-03T16:06:28.000Z","author":{"@type":"Person","@id":"https://www.duocircle.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://www.duocircle.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin runs DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. His focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/dmarcreport/images/team/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"DuoCircle LLC","url":"https://www.duocircle.com","logo":{"@type":"ImageObject","url":"https://www.duocircle.com/images/duocircle-logo.png"},"description":"DuoCircle is a portfolio of specialized email products covering protection, authentication, delivery, and routing. We deliver about 90% of category-leader capability at roughly half the price, backed by experts who own the outcome. Trusted by 50,000+ organizations since 2014.","subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://www.duocircle.com/blog/phishing-protection/10-applications-of-chatgpt-that-hackers-are-already-exploiting/"},"articleSection":"phishing-protection","keywords":"News, Security, Updates","wordCount":893,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/duocircle/images/2023/05/spf-permerror-4555.jpg","caption":"spf-permerror-4555","width":900,"height":600},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```