{"id":7,"date":"2025-08-28T08:27:08","date_gmt":"2025-08-28T08:27:08","guid":{"rendered":"https:\/\/robotsnot.com\/?p=7"},"modified":"2025-08-28T09:25:49","modified_gmt":"2025-08-28T09:25:49","slug":"cybercrime-llms","status":"publish","type":"post","link":"https:\/\/robotsnot.com\/index.php\/2025\/08\/28\/cybercrime-llms\/","title":{"rendered":"Cybercrime &amp; LLMs"},"content":{"rendered":"\n<p>Ransomware has always been the cybercriminal\u2019s version of a home business: low overhead, high returns, and no pesky taxes. But thanks to generative AI, it\u2019s apparently leveling up from \u201cbasement script kiddie\u201d to \u201cSilicon Valley startup with venture funding.\u201d<\/p>\n\n\n\n<p>Anthropic just dropped a report showing that criminals are using its own AI, Claude, not just to draft scarier ransom notes, but to actually help build and distribute malware. Yes, the same AI designed to politely refuse your request for NSFW fanfiction is now moonlighting as a cybercrime consultant. To their credit, Anthropic says they\u2019ve banned the account tied to one UK-based ransomware peddler (codename GTG-5004) and are rolling out YARA rules to stop their AI from spitting out weaponized code. In other words: \u201cWe put a lock on the front door, but don\u2019t mind the wide-open windows.\u201d<\/p>\n\n\n\n<p>Meanwhile, ESET researchers unveiled <em>PromptLock<\/em>, a proof-of-concept ransomware that uses a local AI model to write malicious Lua scripts on the fly. Imagine ChatGPT, but instead of suggesting dinner recipes, it encrypts your family photos and demands $500 in Bitcoin. Charming. While PromptLock hasn\u2019t been unleashed in the wild yet, it\u2019s a proof that cybercriminals are experimenting with local models\u2014because nothing says innovation like cutting out the cloud middleman in your extortion scheme.<\/p>\n\n\n\n<p>The most unnerving part? AI isn\u2019t just giving attackers better grammar; it\u2019s making non-technical criminals dangerous. GTG-5004, for example, apparently couldn\u2019t implement basic encryption on their own\u2014Claude held their hand the whole way. It\u2019s essentially the Duolingo of cybercrime: <em>\u201cToday you learned how to exfiltrate sensitive data! Congratulations, you\u2019re 10 XP closer to becoming a ransomware kingpin.\u201d<\/em><\/p>\n\n\n\n<p>Allan Liska from Recorded Future summed it up: most ransomware crews aren\u2019t going full AI yet, but they\u2019re happily using it to get in the door. Think of it as the LinkedIn recruiter phase of the ransomware process: AI writes the phishing email that gets them access, then the humans take it from there.<\/p>\n\n\n\n<p>The bottom line: ransomware has always been profitable, but AI is making it scalable. Criminals can automate the boring parts\u2014finding targets, writing ransom notes, developing basic malware\u2014and save their human ingenuity for more important things, like arguing on cybercrime forums about whether $400 or $1,200 is a fair price for your neighborhood\u2019s encryption-as-a-service package.<\/p>\n\n\n\n<p>So yes, we\u2019re officially in the era where the biggest danger of generative AI isn\u2019t that it makes teenagers cheat on their essays\u2014it\u2019s that it\u2019s helping criminals run more efficient startups than half of Silicon Valley.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Ransomware has always been the cybercriminal\u2019s version of a home business: low overhead, high returns, and no pesky taxes. But thanks to generative AI, it\u2019s apparently leveling up from \u201cbasement script kiddie\u201d to \u201cSilicon Valley startup with venture funding.\u201d Anthropic just dropped a report showing that criminals are using its own AI, Claude, not just [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":11,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[4,8,2],"class_list":["post-7","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-ai","tag-crime","tag-tech"],"_links":{"self":[{"href":"https:\/\/robotsnot.com\/index.php\/wp-json\/wp\/v2\/posts\/7","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/robotsnot.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/robotsnot.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/robotsnot.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/robotsnot.com\/index.php\/wp-json\/wp\/v2\/comments?post=7"}],"version-history":[{"count":2,"href":"https:\/\/robotsnot.com\/index.php\/wp-json\/wp\/v2\/posts\/7\/revisions"}],"predecessor-version":[{"id":10,"href":"https:\/\/robotsnot.com\/index.php\/wp-json\/wp\/v2\/posts\/7\/revisions\/10"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/robotsnot.com\/index.php\/wp-json\/wp\/v2\/media\/11"}],"wp:attachment":[{"href":"https:\/\/robotsnot.com\/index.php\/wp-json\/wp\/v2\/media?parent=7"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/robotsnot.com\/index.php\/wp-json\/wp\/v2\/categories?post=7"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/robotsnot.com\/index.php\/wp-json\/wp\/v2\/tags?post=7"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}