The Dual-Edged Sword of Large Language Models in Phishing

Publication date

2025

Authors

Siemerink, Alec
Jansen, R.L.ORCID 0000-0003-3752-2868ISNI 000000039050399X
Labunets, Katsiaryna

Editors

Horn Iwaya, Leonardo
Kamm, Liina
Martucci, Leonardo
Pulls, Tobias

Advisors

Supervisors

Document Type

Part of book
Open Access logo

License

taverne

Abstract

Background: With the rise of Large Language Model (LLM) technologies and LLM-based chatbots like ChatGPT, Copilot or Gemini, cyberattacks such as phishing are getting more sophisticated by using AI to craft personalized phishing messages. This poses a challenge for cybersecurity. Aim: This study explores the complexities of AI-enhanced phishing strategies, their success factors, and how LLMs can be used to improve cybersecurity defenses against phishing. Method: We delve into how LLMs, especially GPT 3.5 and 4, can detect and combat phishing. By experimenting with prompting techniques such as zero-shot, multi-shot, and chain-of-thought, we assess how these models fare in spotting phishing emails across various datasets. Results: The findings show that while GPT-4 demonstrates high precision and recall, the decision to deploy LLMs must consider cost-effectiveness, given their computational demand and operational costs.

Keywords

Cybersecurity, GPT, Large Language Models, Phishing Detection, Prompt Engineering, Taverne, Theoretical Computer Science, General Computer Science

Citation

Siemerink, A, Jansen, S & Labunets, K 2025, The Dual-Edged Sword of Large Language Models in Phishing. in L Horn Iwaya, L Kamm, L Martucci & T Pulls (eds), Secure IT Systems - 29th Nordic Conference, NordSec 2024, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 15396 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 258-279, 29th Nordic Conference on Secure IT Systems, NordSec 2024, Karlstad, Sweden, 6/11/24. https://doi.org/10.1007/978-3-031-79007-2_14, conference