Fake ChatGPT Domains: Fake ChatGPT Domains and Extensions Steal Personal Information: Study
Technisant, a digital enterprise risk management firm, said attackers are using social engineering tactics to trick users into downloading and installing fake devices. ChatGPT applications, including the creation of persuasive logos and web pages, and the use of persuasive language in their marketing materials.
ChatGPT is an AI-based generative chatbot launched a few months ago by the company Open AI which quickly gained popularity all over the world.
Security firm last week CloudSEK said at least 13 Facebook accounts with over 500,000 subscribers were compromised and used to spread malware through Facebook ads that looked like a link to an Open AI page.
“Fake domains are commonly used for phishing and, to some extent, to promote malware and thieves. This could potentially steal consumer data. There is a high demand for access to the ChatGPT platform and consumers with less awareness could potentially fall victim to all of this,” said Nandakishore Harikumar, CEO of Technisanct.
A few weeks after launching ChatGPT, the company defined a domain called “Chat GpT for Windows” by asking users to download the executable. It was malware designed to steal data from Windows devices.
Discover stories that interest you
Similarly, he stumbled upon another Google Chrome extension that, once installed, acted as a browser data thief, Harikumar said. This means it can steal information such as login credentials as well as other data, he said. CloudSEK researchers said they have uncovered several instances of Facebook and YouTube pages being hijacked by cybercriminals over the past two months.
“After hijacking a Facebook account or page, the attackers change the profile information to make it look like it’s a genuine ChatGPT page. This includes using the username “ChatGPT OpenAI” and setting the ChatGPT picture as your profile picture. These accounts are then used to run Facebook ads offering links to “the latest version of ChatGPT, GPT-V4″ which, when downloaded, deploys stealth malware on the victim’s device,” the report says.
The ads are designed in such a way that they appear legitimate and contain all the necessary details to appear compelling to unsuspecting users, said Bablou Kumar, Cyber Intelligence Analyst at CloudSEK.
“The download link comes with a password to add credibility to the scam. In addition, compromised accounts can also lead to the theft of personal information and sensitive data such as payment information, etc.,” he said.
Users would do well to remember that ChatGPT does not require a download or application and can only be accessed through a browser. “All these applications claiming to be ChatGPT applications are not owned by OpenAI. They are just using the popularity of ChatGPT to promote their platform or application,” Harikumar said.