AI Cybercrime Study Finds ChatGPT Mostly Fuels Spam, Not Hackers

A Cambridge-led study on AI cybercrime adoption finds that “AI isn’t taking the job” of turning hackers into superhackers. Researchers analyzed 97,895 cybercrime forum threads posted after ChatGPT’s launch (Nov 2022) and classified 97.3% of threads as “other,” not focused on using AI for crime. The biggest measurable AI-driven activity was not advanced hacking. Instead, criminals used ChatGPT-like tools for mass-produced SEO spam, romance scams, and AI-generated nude image services. “Dark AI” products (e.g., WormGPT/FraudGPT) were often described in forums as marketing or unreliable, with jailbreaks for mainstream models becoming short-lived. The study also contrasts “vibe hacking” claims with observed underground behavior. Vibe coding was real, but most use was limited to autocomplete-style help for skilled coders; low-skill actors stuck to pre-made scripts. Authors note that “guardrails” for AI systems appeared effective and that AI-assisted coding may increase risks like insecure code and supply-chain vulnerabilities. Finally, the paper highlights potential economic fallout: generative AI job cuts could push some legitimate developers into the underground, worsening fraud and cybercrime activity over time. For traders, the key takeaway is that the “AI hacker boom” narrative looks overstated in the short term, while scam-driven demand and labor-market stress could still shape broader risk sentiment.