Hackers and cybercriminals are always finding new ways to exploit users in today’s world where technology has become an essential part of our lives. One such way is through fake apps that claim to be legitimate but are designed to steal users’ information. Recently, a fake ChatGPT app with new malware has been discovered, which poses a serious threat to users’ privacy and security.
The scammers are using ChatGPT as bait because it’s hugely popular, and there’s high demand and low availability. Kaspersky experts have uncovered a malicious campaign exploiting the growing popularity of ChatGPT. Fraudsters create groups on social networks that convincingly mimic official OpenAI accounts or at least communities of enthusiasts. These groups publish equally persuasive posts claiming that ChatGPT hit one million users faster than any other service. At the bottom of the post is a link for supposedly downloading a ChatGPT desktop client.
Once potential users click on the link, a very plausible URL opens a well-made site inviting them to download ChatGPT for Windows. It’s not the official site, but very like the original. If the user clicks on the download button, an archive with an executable file is indeed downloaded. However, the installation fails for some reason, or no message is shown, but in reality, a stealer Trojan is installed on the user’s computer in the background.
The fake ChatGPT app is designed to look and feel like the original platform, making it difficult for users to differentiate between the two. Hackers use various tactics to attract users to download the app, such as social media ads, fake reviews, and promotions. Users are often lured by the promise of free services, exclusive features, or discounts.
Once users download the fake ChatGPT app, the malware starts collecting their personal information, including their login credentials, contacts, messages, and browsing history. The malware can also take control of the device’s camera and microphone, enabling hackers to spy on users.
To use ChatGPT safely, it’s important to note that there’s no official desktop, mobile, or other client for ChatGPT, only the web version. Users must make sure they land on the official site (https://chat.openai.com) by entering the URL in the address bar themselves. Additionally, having a good security solution installed on their computer is important as ChatGPT is gaining popularity, and attackers are bound to come up with more campaigns centered on this revolutionary new chatbot.
The fake ChatGPT app with new malware is a serious threat to users’ privacy and security. Users must be cautious when downloading apps and be aware of the tactics used by hackers to attract them. By taking proactive measures to protect themselves, such as using the official website and having a good security solution installed, users can safeguard their personal information and prevent falling victim to such attacks.