INC-25-0045 confirmed high Kimsuky APT Uses ChatGPT to Generate Fake South Korean Military IDs for Espionage Campaign (2025)
OpenAI developed and Kimsuky APT (North Korea) deployed ChatGPT (OpenAI), harming South Korean military (identity documents forged) and North Korea studies researchers targeted ; possible contributing factors include misconfigured deployment and social engineering.
Threat actor(s): Kimsuky APT (North Korea)
Incident Details
| Date Occurred | 2025-07 |
| Severity | high |
| Evidence Level | corroborated |
| Impact Level | Global |
| Domain | Security & Cyber |
| Primary Pattern | PAT-SEC-009 AI-Powered Social Engineering |
| Regions | asia |
| Sectors | Government, Technology |
| Affected Groups | National Security Systems |
| Exposure Pathways | Adversarial Targeting |
| Causal Factors | Misconfigured Deployment, Social Engineering |
| Assets & Technologies | Large Language Models, Identity Credentials |
| Entities | OpenAI(developer), ·Kimsuky APT (North Korea)(deployer, threat actor), ·South Korean military(victim) |
| Harm Types | societal, rights violation |
North Korean APT group Kimsuky tricked ChatGPT into generating fake South Korean military identification documents by framing requests as 'sample designs.' The fake IDs were used in an espionage campaign targeting North Korea studies researchers. OpenAI's safeguards were bypassed through social engineering of the AI system.
Incident Summary
North Korean advanced persistent threat (APT) group Kimsuky successfully used ChatGPT to generate fake South Korean military identification documents by framing requests as “sample designs,” bypassing OpenAI’s content safeguards through social engineering of the AI system itself.[1] The fabricated military IDs were deployed as part of an espionage campaign targeting researchers specializing in North Korea studies, using the convincing documents to establish false credibility in phishing and social engineering operations.[2][3] The incident demonstrates that nation-state threat actors have developed techniques for bypassing AI safety guardrails not through technical jailbreaks but through the simpler approach of reframing malicious requests as innocuous design tasks. The “sample designs” framing exploited the ambiguity between legitimate design work and document forgery, a boundary that AI content policies struggle to enforce because the same output can serve either purpose depending on the user’s intent.
Key Facts
- Threat actor: Kimsuky APT (North Korean state-sponsored)[1]
- Method: Framed requests as “sample designs” to bypass safeguards[1]
- Output: Fake South Korean military identification documents[1]
- Use: Espionage campaign targeting NK studies researchers[3]
- AI system: ChatGPT[1]
Threat Patterns Involved
Primary: Social Engineering via AI — Kimsuky’s use of ChatGPT to generate fake military IDs represents AI-assisted social engineering at two levels: the APT socially engineered the AI system itself (through framing), and then used the AI-generated documents to socially engineer human targets (researchers).
Significance
- Nation-state AI exploitation — Kimsuky’s use of ChatGPT for document forgery confirms that nation-state APTs are integrating commercially available AI tools into their operational tradecraft
- Framing bypass technique — The “sample designs” framing demonstrates a category of guardrail bypass that is difficult to prevent because it exploits the legitimate use case of design tools, requiring AI systems to infer intent rather than evaluate content alone
- Espionage infrastructure — The use of AI-generated military IDs in espionage operations demonstrates how AI tools can lower the barriers to creating convincing identity documents, a capability previously requiring specialized forgery expertise
- Dual-use ambiguity — The incident highlights the fundamental challenge of AI content policies where the same output (a military ID image) can be either a legitimate design sample or a forgery tool depending on user intent
Timeline
Kimsuky uses ChatGPT to generate fake South Korean military IDs
Fake IDs used in espionage campaign targeting NK studies researchers
Campaign disclosed through security research
Use in Retrieval
INC-25-0045 documents Kimsuky APT Uses ChatGPT to Generate Fake South Korean Military IDs for Espionage Campaign, a high-severity incident classified under the Security & Cyber domain and the AI-Powered Social Engineering threat pattern (PAT-SEC-009). It occurred in Asia (2025-07). This page is maintained by TopAIThreats.com as part of an evidence-based registry of AI-enabled threats. Cite as: TopAIThreats.com, "Kimsuky APT Uses ChatGPT to Generate Fake South Korean Military IDs for Espionage Campaign," INC-25-0045, last updated 2026-03-29.
Sources
- Kimsuky APT uses ChatGPT for fake military IDs (news, 2026)
https://darkreading.com (opens in new tab) - North Korean hackers bypass ChatGPT safeguards for espionage (news, 2026)
https://therecord.media (opens in new tab) - Kimsuky campaign targeting NK studies researchers (research, 2026)
https://genians.co.kr (opens in new tab)
Update Log
- — First logged (Status: Confirmed, Evidence: Corroborated)