The cybercriminal group known as “GXC Team” has introduced an AI-powered tool named “Business Invoice Swapper” designed for creating fraudulent invoices, specifically for wire fraud and Business Email Compromise (BEC). The group, operating on the Dark Web, announced significant price reductions on New Year’s Eve, offering a 20% discount on their products. The tool, available for rental, requires input of compromised email accounts and credentials, manipulating invoices to alter banking information of intended recipients. The AI-driven tool, equipped with proprietary detection algorithms, can process data in multiple languages, providing cybercriminals with a sophisticated means to carry out fraudulent activities.
This update follows the group’s earlier announcement on December 30, unveiling an updated version of their AI-powered tool. The tool scans compromised emails using POP3/IMAP4 protocols and identifies messages related to invoices or containing payment details. Once detected, it alters the banking information of the intended recipient, a technique commonly used in wire fraud and bogus invoice scams. The tool’s multi-language capability enables automatic scanning of messages, giving cybercriminals a significant advantage in scale and effectiveness. The “GXC Team” has gained notoriety for creating a range of online fraud tools, targeting various entities, including financial institutions, government services, and major international online marketplaces.
The cybercriminal faction, “GXC Team,” not only offers an AI-powered tool for fraudulent invoices but has also crafted various tools for online banking theft, ecommerce deception, and internet scams. The group, led by “googleXcoder,” announced these tools on the Dark Web, with the latest tool being offered on a rental basis with subscription plans or a one-time fee. The tool utilizes AI for identifying invoices with payment details and altering the information for fraudulent purposes. Additionally, the group has created kits for pilfering identity information, including tools that mimic official mobile banking applications to circumvent two-factor authentication. The extensive range of tools and tactics employed by “GXC Team” underscores the increasing sophistication of cybercrime through the utilization of artificial intelligence.
