The online realm witnesses the emergence of true successes when scammers start taking interest. In a matter of mere months, ChatGPT has skyrocketed to become the internet’s fastest-growing application.
Naturally, hackers have wasted no time leveraging OpenAI’s artificial intelligence chatbot’s fame for their deceitful endeavours aimed at unsuspecting netizens.
Cybersecurity analysts have already identified a multitude of newly registered domains capitalising on the term “ChatGPT.” While not all of these domains might be intended for malicious activities, there’s evidence that a fair number of them have already been weaponised for such purposes.
Dominic Alvieri, a diligent cybersecurity researcher, has shared his discoveries via social media, outlining the fraudulent ChatGPT websites he’s encountered. These malevolent sites are designed to spread malware and pilfer sensitive information from victims.
Reportedly, a certain site named “chat-gpt-pc.online,” as uncovered by Alvieri and first reported by Bleeping Computer, attempts to lure visitors into believing that ChatGPT can be downloaded as a local application for Windows. However, investigations revealed that this download infuses users’ systems with the RedLine malware, a malicious program specialised in purloining stored data from applications, including web browsers. For instance, if a user utilises Google Chrome to store passwords or credit card details, this malware can intercept and transmit the pilfered information to hackers.
Cybersecurity firm Cyble has published a report further shedding light on the extent of this alarming trend. Their investigation unearthed over 50 counterfeit ChatGPT apps. The Cyble report unveils intriguing tactics adopted by hackers to exploit their victims. In one instance, a deceptive download installs a program named “chatGPT1.” Deceptively, it doesn’t offer any AI functionality; instead, it covertly subscribes its target to multiple premium services, partaking in SMS billing fraud.
Those genuinely interested in using ChatGPT without falling victim to scams should directly visit the official OpenAI website at https://chat.openai.com or its recently acquired domain, AI.com.
As ChatGPT continues its remarkable user base expansion, especially following the introduction of its $20 monthly subscription plan, users must remain vigilant against malicious actors striving to extract their personal information and capitalise on the AI phenomenon.