A Russian hacker tricked a 17,000-strong MAGA Telegram channel with a jailbroken AI for over 5 years, leading to fraud, credential theft, and an empty crypto wallet (www.techradar.com)

A Russian hacker exploited a MAGA-themed Telegram channel, @americanpatriotus, for over five years by posing as an American military veteran using a jailbroken version of Google Gemini AI. This channel, which attracted over 17,000 members from the QAnon and MAGA communities, became a hub for fraudulent activities, credential theft, and cryptocurrency harvesting. The threat actor skillfully navigated the political climate post-Capitol riot to cultivate an audience by sharing content related to military service and constitutional patriotism, while simultaneously executing AI-assisted credential theft campaigns. The significance of this incident lies in the hacker's innovative use of AI technology to bypass ethical limitations and enhance their operations, a tactic rarely seen in cybercrime. By manipulating AI prompts in Russian to sidestep English-based guardrails, the threat actor automated content generation, capitalizing on topical events to engage users effectively. They also demonstrated a cost-efficient approach in running these operations, utilizing likely stolen API keys to minimize expenses. This case underscores the increasing capabilities and dangers of AI in cybercrime, particularly how it can be weaponized to target specific ideological communities.