Social Engineering with ChatGPT

This thesis explores the potential misuse of ChatGPT, a large language model (LLM), in facilitating social engineering attacks. Social engineering exploits human psychology to deceive individuals into divulging confidential information or performing actions that compromise their security. As AI technologies like ChatGPT become more advanced and widespread, understanding their potential for misuse becomes critical for developing effective cybersecurity measures.

Montiel Alcantara, Tomas Humberto, 2025

Art der Arbeit Master Thesis
Auftraggebende
Betreuende Dozierende Scherb, Christopher, Heitz, Luc
Views: 29 - Downloads: 13
The study begins by examining the primary ways ChatGPT can be manipulated to support social engineering attacks, including techniques such as jailbreak, reverse psychology, and prompt injection. It then proposes and develops countermeasures to detect and prevent these AI-driven threats. A comprehensive literature review identifies existing research gaps and informs the development of a novel risk identification process tailored to mitigate AI-enhanced social engineering risks.
Methodologically, the research follows the five-step design science research (DSR) process, encompassing awareness, suggestion, development, evaluation, and conclusion phases. Through this process, the study develops a practical framework for identifying and mitigating cybersecurity risks associated with ChatGPT. The artifact’s effectiveness is tested through qualitative and quantitative evaluations.
The findings highlight the necessity of integrating human judgment with technological solutions to effectively counteract AI-driven social engineering threats. The research provides actionable recommendations for enhancing cybersecurity strategies and calls for a proactive, interdisciplinary approach to address advanced AI technologies' ethical and security challenges. This thesis aims to equip cybersecurity professionals with the tools and knowledge to anticipate and mitigate the risks associated with the misuse of ChatGPT in social engineering attacks.
Studiengang: Business Information Systems (Master)
Keywords Social Engineering ChatGPT, Social Engineering Attacks, ChatGPT Vulnerabilities, and Cybersecurity
Vertraulichkeit: öffentlich
Art der Arbeit
Master Thesis
Autorinnen und Autoren
Montiel Alcantara, Tomas Humberto
Betreuende Dozierende
Scherb, Christopher, Heitz, Luc
Publikationsjahr
2025
Sprache der Arbeit
Englisch
Vertraulichkeit
öffentlich
Studiengang
Business Information Systems (Master)
Standort Studiengang
Olten
Keywords
Social Engineering ChatGPT, Social Engineering Attacks, ChatGPT Vulnerabilities, and Cybersecurity