Skip to main content

Scammers are spoofing ChatGPT to spread malware

ChatGPT on mobile phone

ChatGPT has blown up in just a few months' time, becoming the fastest growing app of all time.

So, of course, hackers are already weaponizing the popularity of OpenAI's artificial intelligence chatbot in order to scam internet users.

Cybersecurity researchers have already uncovered hundreds of recently registered domains utilizing the term "ChatGPT." While not all of these domains will be weaponized for nefarious purposes, some of them already are being used in that way.

Cybersecurity researcher Dominic Alvieri has shared his findings on social media regarding the fake ChatGPT websites that he's come across, which try to spread malware and steal victims' private information. 

According to Alvieri, and as first reported by Bleeping Computer, one such website "chat-gpt-pc.online" attempted to convince visitors to its page that ChatGPT was offered as a downloadable local application for Windows. Alvieri found that this download would inject users with the RedLine information-stealing malware. Essentially, this malware steals stored information in users' applications, such as their web browser. For example, if a user has Google Chrome store their passwords or credit card information, this malware can pull the data and send it to the hacker.

In addition to the targeting of Windows users, Alvieri also found fake ChatGPT apps in the Google Play Store. Upon download, these apps would deploy similar phishing campaigns to steal users' information.

A new report from cybersecurity firm Cyble found just how widespread this was becoming, discovering more than 50 fake ChatGPT apps. And the Cyble report found some interesting ways hackers were attempting to steal from their victims too. One download installed a program called "chatGPT1." It provides no AI utility but does secretly subscribe its target to numerous paid services in what's known as SMS billing fraud.

Those looking to actually use ChatGPT without getting scammed should go directly to the OpenAI website at the url https://chat.openai.com, or its recently acquired domain, AI.com.

As ChatGPT continues to grow its user base and especially so after unveiling a paid element via its $20 per month subscription plan, users should be alert for bad faith actors looking to steal their information and cash in on the AI trend.



from Mashable https://ift.tt/W0rPxEj
https://ift.tt/NTqDSVM
Labels:

Comments

Post a Comment

Popular posts from this blog

When the clocks change for Daylight Saving Time, and why we do it at all

The clocks on our smartphones do something bizarre twice a year: One day in the spring, they jump ahead an hour, and our alarms go off an hour sooner. We wake up bleary-eyed and confused until we remember what just happened. Afterward, "Daylight Saving Time" becomes the norm for about eight months (And yes, it's called "Daylight Saving" not "Daylight Savings." I don't make the rules). Then, in the fall, the opposite happens. Our clocks set themselves back an hour, and we wake up refreshed, if a little uneasy.  Mild chaos ensues at both annual clock changes. What feels like an abrupt and drastic lengthening or shortening of the day causes time itself to seem fictional. Babies and dogs demand that their old sleep and feeding habits remain unchanged. And more consequential effects — for better or worse — may be involved as well (more on which in a minute). Changing our clocks is an all-out attack on our perception of time as an immutable law of ...
Post a Comment
Read more

The Shortcut AI Excel agent could one-shot spreadsheet jobs. Heres how to try it.

There's a new AI agent on the block for people who spend their waking hours inside spreadsheets. Navigate to Shortcut AI's website , and you'll find a page that looks almost exactly like an empty Microsoft Excel spreadsheet. The main difference is a sidebar chatbot that can be tasked with taking on the tedious legwork of building, say, complex financial models or competitive analyses. Because Shortcut is agentic , meaning it can handle multi-step tasks on the user's behalf, the tool can do more than just generate Excel formulas or analyze spreadsheet data. In a demo on X, Nico Christie, founder and CEO of the Shortcut AI agent, showed how the tool swapped out the data from a Microsoft distributed cash flow analysis (DCF) for Google data by looking up Google's SEC filings and populating the data in the same template. This Tweet is currently unavailable. It might be loading or has been removed. Shortcut launched on Monday with a rather ominous tagline: "Try...
Post a Comment
Read more

Mystery Pixel smartphones detailed in code references

The devices also pack 12GB of RAM apiece. Shiba is said to feature a screen with a resolution of 2,268 x 1,080 pixels while Husky could be a bit larger at 2,822 x 1,344 pixels. Given the amount of RAM, however, both would likely qualify as premium devices. from TechSpot https://ift.tt/cefMDJW via
Post a Comment
Read more