Google has removed a fake ChatGPT extension from its Chrome store that stole Facebook session cookies. The bogus extension, known as "Chat GPT For Google", was installed by more than 9,000 users. The extension looked and behaved like the real ChatGPT, as it was based on the same open source project used by the real tool. The fraudsters added some lines of cookie-stealing code to create the fake extension, which was pushed through malicious, sponsored Google Search results. Users assumed it was the real thing, as the scam extension was offered in the official Chrome store. The malware stole Facebook-related cookies and filtered them from the full list acquired via the Chrome Extension API, encrypted the list with AES, and smuggled the stolen information back to the attacker's command-and-control server.
FakeGPT is notable because it uses the same workers.dev service that the original FakeGPT variant used. The previous one allowed attackers to hijack business Facebook accounts under the guise of a ChatGPT Chrome extension. The hijacked pages can be used as promotional bots or to spread extremist propaganda. The misuse of ChatGPT's brand and popularity is rising, and the cybercriminals are jumping on the ChatGPT hype train. They trick users into clicking on malicious links or downloading phony apps or extensions to steal valuable data.
This news highlights the vulnerability of users to such cyber-attacks. It is imperative to exercise caution when downloading extensions, especially if they look similar to popular tools. One should ensure that they download extensions only from reliable sources. Also, users should avoid clicking on any links from unknown sources or installing apps or extensions that are not verified. By following such precautions, users can avoid falling victim to malicious activities.
For more detailed information on this topic please see the following article: https://www.theregister.com/2023/03/23/chatgptfakechrome_extension/
More content at UsAndAI. Join our community and follow us on our Facebook page, Facebook Group, and Twitter.