The popularity of OpenAI’s chatbot, ChatGPT, has become a new target for hackers looking to distribute malware for Windows and Android devices. With over 100 million users by January 2023, the chatbot has become one of the fastest-growing consumer applications in modern history. As a result, OpenAI has throttled the use of the tool and launched a $20/month paid tier for uninterrupted access. Hackers are taking advantage of the chatbot’s popularity by tricking users into downloading malware or providing account credentials using fake ChatGPT apps.
Exploiting ChatGPT’s popularity
Security researcher Dominic Alvieri was among the first to notice hackers using the domain “chat-gpt-pc.online” to infect visitors with the Redline info-stealing malware. The hackers promoted the website through a Facebook page that used official ChatGPT logos to redirect unsuspecting users to the malicious site. Alvieri also discovered fake ChatGPT apps being promoted on Google Play and third-party Android app stores, pushing dubious software onto people’s devices.
Researchers at Cyble have published a report presenting additional findings regarding the malware distribution campaign discovered by Alvieri, as well as other malicious operations exploiting ChatGPT’s popularity. Cyble discovered “chatgpt-go.online” which distributes malware that steals clipboard contents and the Aurora stealer. Additionally, “chat-gpt-pc[.]online” delivered the Lumma stealer in Cyble’s tests. Another domain, “openai-pc-pro[.]online,” drops an unknown malware family. Cyble also discovered a credit card stealing page at “pay.chatgptftw.com” that supposedly offers visitors a payment portal to purchase ChatGPT Plus.
Fake ChatGPT apps
Cyble discovered over 50 malicious applications that use the ChatGPT icon and a similar name. Two examples highlighted in the report are ‘chatGPT1,’ which is an SMS billing fraud app, and ‘AI Photo,’ which contains the Spynote malware. This malware can steal call logs, contact lists, SMS, and files from the device. ChatGPT is exclusively an online-based tool available only at “chat.openai.com” and does not offer any mobile or desktop apps for any operating systems at the moment.
Stay vigilant
Any other apps or sites claiming to be ChatGPT are fakes attempting to scam or infect with malware. Users should avoid these apps or sites and consider them suspicious. It is crucial to stay vigilant and only download apps from reputable sources. Always verify the legitimacy of any app or website before entering any personal information or downloading any software. Additionally, it is recommended to install antivirus software and keep it updated regularly to prevent malware infections.
The popularity of OpenAI’s ChatGPT has made it a new target for hackers looking to distribute malware to unsuspecting victims. Users should be cautious of any offers for free or uninterrupted access to ChatGPT, as it is a ploy to infect devices with malware or steal personal information. Stay vigilant and avoid downloading any apps or visiting any websites claiming to be ChatGPT. Always verify the legitimacy of any software or website before entering any personal information or downloading any software.
