Beware of Fake ChatGPTs!
Kaspersky researchers have uncovered a new wave of cyber attacks. Taking advantage of the growing popularity of the ChatGPT artificial intelligence chatbot, cybercriminals distribute the malware via social media and offer a fake desktop version of ChatGPT.
Kaspersky researchers are warning of an ongoing wave of attacks targeting ChatGPT users. The attacks are created by groups that impersonate official OpenAI accounts on social networks, doing so with persuasiveness, or at least outwardly appearing as communities of ChatGPT enthusiasts. The scammers seem to be the desktop version of ChatGPT, with seemingly official posts. When users click on the link in the post, they are taken to a well-crafted website that looks almost identical to the official ChatGPT website. It asks the user to download the so-called ChatGPT Windows desktop version, which consists of an archive containing an application file. The installation process starts and suddenly stops with an error message stating that the program could not be installed.
Facebook infects a Trojan named Fobo alongside TikTok and Google account information
Users think that the program cannot be installed and they may even forget that they have done this. The installation of the program takes place without the knowledge of the user, and a new thief Trojan, Trojan-PSW.Win64.Fobo, is installed on the user's computer. This Trojan steals information about registered accounts from various internet browsers, including Chrome, Edge, Firefox and Brave.
The attackers behind the trojan are interested in stealing cookies, login credentials from Facebook, TikTok and Google accounts, especially business related ones. The Trojan steals login credentials and tries to obtain additional information, such as the amount of money spent on advertising activities and the current balance of business accounts.