Artificial intelligence (AI) has revolutionized many aspects of our lives, from automation at work to entertainment and education. However, in the world of cybersecurity, it has also brought new threats and challenges, especially with the emergence of AI models geared toward illicit purposes. Jordi Juan, partner in technology and cybersecurity consulting at EY, puts this phenomenon into perspective by talking about a tool called WormGPT, considered by many to be the “evil brother” of ChatGPT.

What is WormGPT and how is it different from ChatGPT?

Unlike ChatGPT, which has built-in ethical restrictions and limitations, WormGPT is a generative language model focused on providing information without the security filters of conventional AI models. “The ChatGPT we all know is a bit restricted,” says Jordi Juan. “If you ask it to explain how to make a bomb, it will tell you no, because that is wrong. However, if you ask WormGPT to tell you how to create a computer virus, it will do it. And if you ask it how you can introduce that virus into a company, it will explain it to you step by step.”

WormGPT is different in that it does not present the ethical restrictions of other models; its objective is to provide access without barriers to information that, in the wrong hands, can be dangerous. This has raised concerns in the field of cybersecurity, since it facilitates access to technical information that could be used for cyber attacks.

WormGPT Functionality: More than a Search Engine

Although many consider WormGPT as an advanced version of a conventional search engine, the reality is that this model goes further. Jordi Juan explains that WormGPT works as an advanced search engine, similar to Google, but with generative language algorithms that prioritize accessibility to specific information directly. Being a generative artificial intelligence, WormGPT is able to contextualize and synthesize content that already exists on the network, delivering it in a comprehensible and accessible way.

“Ultimately, they are generative language algorithms that search for information that is on the web. Everything they show you is already available, but these types of systems make it easy for you, because it makes everything much more accessible,” adds Juan. This level of accessibility poses an ethical and practical dilemma for the cybersecurity industry, since knowledge that might have taken time to obtain or been difficult to understand is now presented clearly and quickly to anyone.

What are the Implications of WormGPT on Cybersecurity?

The emergence of tools like WormGPT means that the barrier to entry for cyberattacks has been significantly reduced. Previously, a potential hacker would need advanced technical knowledge to create and execute an attack. With WormGPT, technical information is available to people without specialized training, multiplying the risk that malicious actors can launch sophisticated attacks without significant effort.

This phenomenon raises the need for policies and regulations that can limit access to AI tools for potentially harmful purposes. In turn, companies must invest in more robust cybersecurity measures and in training their staff to identify and mitigate emerging threats that can take advantage of the information WormGPT offers.

Final Reflection

Artificial intelligence has the potential to transform the world in a positive way, but tools like WormGPT remind us of the ethical and security challenges that arise when knowledge is democratized without restrictions. The development of control policies and technologies will be essential for AI to remain a beneficial tool, while mitigating the risks that arise when it falls into the wrong hands.