When AI Writes the Scam: How Artificial Intelligence Is Making DNS Abuse Harder to Detect
When AI Writes the Scam: How Artificial Intelligence Is Making DNS Abuse Harder to Detect
Publish Date: 2026-06-22 11:52:00
Source Domain: circleid.com
I received an email last week. A senior official from a reputable bank, urgent matter, a transfer requiring my immediate assistance, and the usual assurance that my cooperation would be generously rewarded. The Nigerian Prince attack, repackaged for 2026.
I recognised it immediately. But here is what stopped me for a second longer than it should have: the language was perfect. No spelling errors. No awkward phrasing. No obvious tells. The kind of polished, confident English that used to take a skilled human writer to produce. It did not take a skilled human writer anymore. It took a prompt.
That small moment sitting in my inbox is the leading edge of a much larger problem.
The Grammar Tell Is Gone
For years, one of the most reliable signals of a phishing attempt was poor language. Broken sentences, strange formatting, obvious translation errors. Security trainers built entire awareness programmes around it. Spot the grammar mistake, spot the scam.
Large language models have quietly dismantled that heuristic. AI-generated phishing content is now linguistically indistinguishable from legitimate communication. The same technology producing this sentence can produce a convincing bank alert, a fake government notification, or a fraudulent employment offer, in seconds, at scale, in any language. Mandarin. Bahasa. Tamil. Hindi. The language barrier that once limited phishing campaigns to English-speaking bad actors no longer exists.
DNS abuse has always been the infrastructure layer underneath these attacks. Fake domains give phishing content a destination. A convincing message pointing to a convincing lookalike domain is the complete package. AI has now made the content half of that equation nearly undetectable by conventional means.
What AI Changes About the Threat Surface
The traditional DNS abuse problem was one of volume and speed. Malicious domains were cheap to register, fast to deploy, and slow to take down. The governance response,…
