Read Time:1 Minute, 37 Second
Thousands of users installed a Chrome Browser extension of the popular writing chatbot, only to find out it was fake.
A recent incident involving a Chrome Browser extension posing as OpenAI’s ChatGPT service has raised concerns about online security. The fake extension, called “ChatGPT For Google,” was downloaded by thousands of users before it was discovered to be a tool for syphoning Facebook session cookies and taking over accounts.
“Although the extension gives you that (by simply connecting to the official ChatGPT’s API), it also harvests information it can take from your browser, steals cookies of authorised active sessions to any service you have, and also employs tailored tactics to take over your Facebook account,” Guardio Labs said.
After being alerted to the situation, Google took swift action to remove the malicious extension from the Chrome Web Store. The fake extension was a Trojanized version of a legitimate open-source browser add-on, which may have contributed to its success in deceiving users.
Once the user installed the browser extension onto their computers, the threat actors utilised their cookies to exfiltrate their Facebook log-in details. For the account users to lose control and access, the threat actors will immediately change their profile details, especially their passwords.
The infiltrated account will then be used as a bot to comment, like on, and share other people’s posts. Other hackers make these accounts as a platform to promote legitimate or frequently fraudulent products and services.
Trade Arabia mentioned, “The growing popularity of ChatGPT has also led to the emergence of numerous fake domains, APKs, and browser extensions that claim to be associated with ChatGPT. These fake domains, applications, and browser extensions are designed to trick users into downloading and installing malicious software, steal their personal information, or otherwise compromise their devices.”
In light of recent online security breaches, Nandakishore Harikumar, Founder and CEO of Technisanct, stresses the importance of staying vigilant and informed as internet users.
Happy
0 %
Sad
0 %
Excited
0 %
Sleepy
0 %
Angry
0 %
Surprise
0 %
0
0
