Fake ChatGPT domains are increasing – When will it stop?

By | 8 March, 2023

  • ChatGPT’s popularity has spawned many fake domains, APKs, and browser extensions claiming association.
  • Technisanct researchers found 7946 domains registered under ChatGPT’s name, a concerning number.

In recent years, the rise in demand for artificial intelligence (AI) and natural language processing (NLP) has resulted in the creation of several chatbot services. One of the most prominent AI chatbots is ChatGPT, a large language model OpenAI has trained.

Nonetheless, the increasing popularity of ChatGPT has led to the emergence of multiple fake domains, APKs, and browser extensions that claim to be linked with ChatGPT. These fraudulent domains, apps, and browser extensions are designed to deceive users into downloading and installing harmful software, stealing their personal information, or otherwise compromising their devices.

Technisanct’s report highlights different types of fake ChatGPT domains and browser extensions, as well as the methods used by malicious actors to lure users into downloading or installing these malicious tools.

The rise of AI chatbots and emergence of fake domains and browser extensions

As the use of AI and NLP technologies grows, it has given rise to fraudulent domains, applications, and browser extensions designed to deceive users into installing harmful software, stealing personal information, or otherwise compromising their devices.

THE GROWING INFLUENCE OF CHATGPT IN THE CYBERSECURITY LANDSCAPE

Muhammad Zulhusni | 21 February, 2023

The emergence of these fake ChatGPT domains and browser extensions is a result of the increasing use of these technologies, providing attackers with new opportunities to exploit users’ trust. Attackers employ social engineering tactics, such as creating convincing logos and web pages and using persuasive language in marketing materials, to deceive users into installing fake ChatGPT apps.

The researchers at Technisanct have revealed an alarming 7946 domains registered with ChatGPT in their name, with 5549 of those domains beginning with “chatgpt.” A significant number of these domains are utilized for hosting malicious software or phishing schemes that can result in severe outcomes for unsuspecting users.

The increasing risks with AI chatbots like ChatGPT – When will it stop?

Source – Technisanct

The research team have also identified some ChatGPT Chrome extensions that raise suspicion by requesting risky permissions. These unauthorized third-party extensions could potentially install malware on users’ devices, obtain access to their personal information, or contain malicious code to engage in criminal activities.

Risks associated with fake ChatGPT domains and browser extension

There has been a rise in the use of stealer malware by threat actors to obtain credentials from users’ devices. This type of malware can steal sensitive information such as cookies, credit card details, cryptocurrency wallets, and other personal data stored on the victim’s device. The malware uses various techniques to gather information from the user’s computer.

Fake ChatGPT domains and browser extensions can cause various forms of harm to users. Some of the risks include:

  1. Malware: these fraudulent domains and extensions can distribute malware, which may be used to obtain sensitive information, spy on users, or take control of their devices.
  2. Phishing: malicious actors can use fake ChatGPT domains and browser extensions to deceive users into sharing confidential information such as login credentials, personal information, or financial details, leading to identity theft or other types of fraud.
  3. Financial loss: fraudulent ChatGPT domains and browser extensions can also be employed to carry out fraudulent activities, such as unauthorized purchases with credit cards or stealing money from bank accounts.
  4. Reputation damage: victims of scams or malicious activity through fake ChatGPT domains and browser extensions risk reputational harm, especially if it involves sensitive information or financial losses.

Methods used to lure users

Below are some commonly used methods by malicious actors to entice users to download or install fake ChatGPT domains or browser extensions:

  1. Phishing emails or messages: malicious actors may send emails or messages that resemble those from ChatGPT, requesting users to download a particular application or share sensitive information.
  2. Fake promotions or giveaways: malicious actors can create fake promotions or giveaways related to ChatGPT, demanding users download an application or provide personal information to take part.
  3. Search engine optimization (SEO) manipulation: malicious actors can employ SEO tactics to make their fake domains or applications rank higher in search engine results for relevant keywords, making them more likely to be clicked.
  4. Social engineering: malicious actors can use social engineering methods to deceive users into installing fake applications or sharing sensitive information, such as impersonating a trusted friend or authority figure.

Users must be aware of the risks associated with downloading and installing fraudulent ChatGPT apps and browser extensions and take appropriate precautions to avoid falling prey to malicious tools.



By

As a tech journalist, Zul focuses on topics including cloud computing, cybersecurity, and disruptive technology in the enterprise industry. He has expertise in moderating webinars and presenting content on video, in addition to having a background in networking technology.

READ MORE