A fake ChatGPT-branded Chrome browser extension has been found with the ability to hijack Facebook accounts and create rogue admin accounts, and is being used by cybercriminals to distribute malware. We are highlighting one of the many ways in which
Guardio Labs researcher Nati Tal said in a technical report:
“This allows it to push paid Facebook ads at the victim’s expense in a self-propagating worm-like fashion.”
The “Quick Access to Chat GPT” extension, which reportedly attracted 2,000 installs per day since March 3, 2023, was removed from the Chrome Web Store on March 9, 2023.
This browser add-on, advertised through a Facebook-sponsored post, offers the ability to connect to the ChatGPT service while secretly using an already active authenticated session to store cookies and Facebook account data. Designed to collect.
This is achieved by leveraging two fake Facebook applications, a portal and msg_kig, to maintain backdoor access and complete control over the target profile. The process of adding apps to your Facebook account is fully automated.
Hijacked Facebook business accounts are used to promote malware, effectively expanding the army of Facebook bots.
The development follows threat actors leveraging the enormous popularity of OpenAI’s ChatGPT, released late last year, to create fake versions of artificial intelligence chatbots to trick unsuspecting users into installing them. Thing.
Last month, Cyble uncovered a social engineering campaign leveraging an unofficial ChatGPT social media page to direct users to malicious domains that download information stealers such as RedLine, Lumma, and Aurora.
Discover the hidden dangers of third-party SaaS apps
Are you aware of the risks associated with third-party app access to your company’s SaaS apps? Join our webinar to learn about the types of permissions granted and how to minimize the risks.
reserve a seat
We also spotted a fake ChatGPT app distributed via Google Play store and other third-party Android app stores to push the SpyNote malware to people’s devices.
“Unfortunately, the success of viral AI tools has drawn the attention of scammers who use the technology to conduct sophisticated investment fraud on unwary internet users,” Bitdefender revealed last week.
