As technologies get smarter, so do threat actors. Now, a new report highlights how threat actors are using ChatGPT's popularity to spread malware on Facebook.?
CloudSEK researchers found that threat actors are using the popularity of language model ChatGPT to trick users into downloading malware onto their devices.?
By using previously compromised data, phishing techniques, and stealer logs to take control of Facebook accounts, malware programmes are being spread through various channels like Trello boards, Google Drive, and websites embedded in Facebook ads - all of which are disguised as the latest version of ChatGPT.
Also read:?AI-Generated YouTube Videos Leading Unsuspecting Users To Info-Stealing Malware
The research found 13 Facebook pages and accounts that had a reach of 500,000 followers are involved in the dissemination of malware via Facebook ads, with the oldest instance dating back to February 13, 2023. Sometimes the threat actors also target newly created accounts - some as young as 0 days old!
According to the research, a specific video is used by the group or individual threat actor to attract and engage the audience through compromised accounts. So far, at least 25 websites have been found to be engaging in impersonation of OpenAI's website.
In addition, do not download any files from unverified sources on your phone or laptop. If you need to download an app, simply head over to the Microsoft Store (on your Windows laptop) or Play Store (on Android) instead of downloading raw installation packages. This way, you keep your data safe and prevent the risk of automatically sending malicious links to your contacts.?In addition, do not click on ads that appear sketchy or use link shortening services.
Also read:?Android Malware Subscribes Users To Sketchy Services, Then Forces Them To Pay Up
"The malicious malware is not only capable of stealing sensitive information such as PII, system information, and credit card details from the user's device, but also has replication capabilities to spread across systems through removable media. With the ability to escalate privileges and persistently remain on the system, it poses a significant threat. Its malicious nature is evident from being flagged by 9 out of 61 security vendors on VirusTotal," said Bablu Kumar, Cyber Intelligence Analyst, CloudSEK.
Have you ever fallen prey to malware? Let us know in the comments below.?For more in the world of?technology?and?science, keep reading?Indiatimes.com.