Malicious large language models like WormGPT 4 and KawaiiGPT are basically handing out cybercrime starter kits, letting script kiddies crank out sophisticated ransomware code, phishing emails, and data exfiltration scripts without breaking a sweat. Researchers at Palo Alto Networks Unit42 put these bad boys to the test, finding that WormGPT 4 can spit out functional PowerShell scripts to encrypt files with AES-256, add Tor-based data theft, and even craft convincing ransom notes that sound like they came from a pro hacker. Meanwhile, KawaiiGPT offers a free alternative that’s just as sneaky, generating polished phishing lures and Python scripts for lateral movement that could escalate privileges or steal sensitive files in minutes. These tools are thriving in underground Telegram communities, making it easier for low-skill attackers to scale up operations and dodge the usual newbie mistakes like poor grammar. For SMBs and MSPs, this means tightening your defenses isn’t optional—start by auditing your AI integrations and brushing up on best practices to spot and block these LLM-fueled threats before they encrypt your data and demand bitcoin.
You May Also Enjoy
French Football Federation discloses data breach after cyberattack
The French Football Federation (FFF) recently fessed up to a data breach where hackers snagged access to their admin software via a hijacked account, exposin...
OpenAI discloses API customer data breach via Mixpanel vendor hack
OpenAI just fessed up to a sneaky data slip involving some ChatGPT API users, all thanks to a smishing attack on their analytics vendor, Mixpanel—yeah, that ...
Mixpanel Security Breach
Mixpanel recently spilled the beans on a security hiccup involving a smishing attack that snuck up on a handful of customers back on November 8th, 2025, prov...
ChatGPT and Copilot are being booted out of WhatsApp
Meta’s cracking down on its WhatsApp platform by kicking out rival AI chatbots like OpenAI’s ChatGPT and Microsoft’s Copilot starting January 15, 2026, thank...