This malware steals social media credentials under ChatGPT app disguise

A workforce of researchers have recognized a brand new and ongoing malware marketing campaign that capitalises on the rising reputation of the ChatGPT AI chatbot, a brand new report mentioned on Thursday.

According to cybersecurity agency Kaspersky, cybercriminals are distributing the malware by way of Facebook communities, providing a pretend desktop model of ChatGPT.

“This marketing campaign concentrating on ChatGPT is a primary instance of how attackers are leveraging social engineering methods to take advantage of the belief that customers place on common manufacturers and companies. It is necessary for customers to grasp that, simply because a service seems to be legit, it does not imply that it’s,” mentioned Darya Ivanova, a safety knowledgeable at Kaspersky.

Other than the bot, customers are contaminated with the Fobo Trojan, which steals delicate information reminiscent of Facebook, TikTok, and Google account credentials, in addition to private and company monetary data.

When customers click on on the hyperlink within the put up, they’re directed to a well-designed web site that appears virtually equivalent to the official ChatGPT web site, mentioned the report.

The web site then directs customers to obtain a purported ChatGPT model for Windows, which is definitely an archive containing an executable file.

The set up course of then begins however abruptly ends with an error message stating that the programme couldn’t be put in.

In reality, the set up of this system proceeds with out the customers’ information and a brand new stealer Trojan, Trojan-PSW.Win64.Fobo, is put in on the consumer’s laptop, in response to the report.

This Trojanis meant to steal details about saved accounts from browsers reminiscent of Chrome, Edge, Firefox, and Brave.

As a part of the assault, the Trojan steals login credentials in addition to makes an attempt to acquire further data, reminiscent of the quantity of promoting cash and the present stability of the enterprise accounts.

The attackers are going after the worldwide market. Users in Africa, Asia, Europe, and America have been focused by the fraudulent “desktop shopper” for ChatGPT,the report talked about.

(With inputs from IANS)