North Korean Hackers Use ChatGPT for Deepfake ID in Cyberattack

September 17, 2025
North Korean hackers, identified as the Kimsuky group, used ChatGPT to create a deepfake military ID for a cyberattack on South Korean targets, according to a report by Genians.

Kimsuky, a North Korean state-sponsored hacking group, has reportedly used ChatGPT to create a deepfake military ID document as part of a cyberattack on South Korean targets. This information was revealed in a report by Genians, a South Korean cybersecurity firm, and reported by Bloomberg.

The hackers crafted a fake draft of a South Korean military identification card using the AI tool to enhance the credibility of a phishing attempt. The email containing the fake ID linked to malware designed to extract data from the recipients' devices. The attack targeted South Korean journalists, researchers, and human rights activists focused on North Korea.

Genians' research indicates that the hackers bypassed ChatGPT's restrictions on generating government ID replicas by altering prompts to request mock-ups for legitimate purposes. This incident highlights the increasing use of AI in cyber-espionage activities by North Korean operatives.

The Kimsuky group has been previously linked to other espionage efforts against South Korean entities. The U.S. Department of Homeland Security has identified Kimsuky as a unit tasked by the North Korean regime with global intelligence-gathering missions.

We hope you enjoyed this article.

Consider subscribing to one of our newsletters like Cybersecurity AI Weekly or Daily AI Brief.

Also, consider following us on social media:

Cybersecurity AI AI Brief AI Brief (X)

More from: Cybersecurity

09/16
Stamus and SentinelOne Enhance AI Security with Expanded Partnership
09/16
Akamai and Seraphic Security Integrate Secure Browsing with Zero Trust
09/15
ShardSecure and Entrust Partner to Enhance Data Security
09/14
OpenAI Collaborates with US and UK Institutes to Enhance AI Security
09/12
Sublime Security Introduces AI Agent for Enhanced Threat Protection

Subscribe to Cybersecurity AI Weekly

Weekly newsletter about AI in Cybersecurity.

AI Token Webinar

Market report

2025 Generative AI in Professional Services Report

Thomson Reuters

This report by Thomson Reuters explores the integration and impact of generative AI technologies, such as ChatGPT and Microsoft Copilot, within the professional services sector. It highlights the growing adoption of GenAI tools across industries like legal, tax, accounting, and government, and discusses the challenges and opportunities these technologies present. The report also examines professionals' perceptions of GenAI and the need for strategic integration to maximize its value.

Read more

You May Also Like