Cybercriminals are now selling lifetime access to malicious AI chatbots WormGPT and KawaiiGPT for as little as $220, marking a dangerous new chapter in AI-powered cybercrime.

These tools remove all ethical restrictions found in mainstream AI models, enabling attackers to generate phishing emails, create ransomware, and automate hacking operations with minimal technical skill.

Large language models present a fundamental challenge for security professionals. The same capabilities that make AI useful for defense also make it powerful for attacks.

Attackers can use AI to generate convincing phishing messages, create malware code, and automate reconnaissance activities. The line between a helpful research tool and a dangerous weapon often depends only on the user’s intent.

WormGPT Returns with Commercial Pricing

The original WormGPT appeared in July 2023 as one of the first commercial malicious AI tools. Built on the open-source GPT-J 6B model, it was trained on malware code, exploit guides, and phishing templates.

After media attention forced its shutdown, the brand has returned as WormGPT 4.

The new version operates through Telegram and underground forums with transparent subscription pricing. Monthly access costs $50, annual access costs $175, and lifetime access costs $220.

The tool has attracted over 500 subscribers to its Telegram channel since sales began around September 27, 2025.

Unit 42 researchers tested WormGPT 4 and found that it can instantly generate working ransomware scripts.

When asked to create code to encrypt PDF files, it produced a functional PowerShell script using AES-256 encryption with command-and-control server support. The model also creates professional ransom notes with 72-hour payment deadlines.

KawaiiGPT Offers Free Access

While WormGPT requires payment, KawaiiGPT provides similar capabilities completely free. First identified in July 2025, this tool is available on GitHub and can be set up in under five minutes on Linux systems.

Despite its cute name and friendly interface, KawaiiGPT generates dangerous content.

Researchers found it can create convincing spear-phishing emails that appear to come from banks, produce Python scripts for lateral network movement, and generate code for data exfiltration targeting email files.

According to Palo Alto Networks, the tool claims to have over 500 registered users, with several hundred active users each week. An active Telegram community of 180 members shares tips and feature requests.

These tools represent a significant shift in the threat landscape. Previously, creating convincing phishing campaigns or functional malware required substantial technical expertise.

Now, anyone with internet access can use these AI tools to launch sophisticated attacks in minutes rather than days.

Security defenders can no longer rely on traditional warning signs, such as poor grammar or sloppy code, to identify threats.

The democratization of AI-powered cybercrime means organizations must strengthen their defenses against increasingly polished and automated attacks.

Follow us on Google News, LinkedIn, and X for daily cybersecurity updates. Contact us to feature your stories.

The post Hackers Sell Lifetime Access to WormGPT and KawaiiGPT for Just $220 appeared first on Cyber Security News.