- Joined
- May 15, 2016
- Messages
- 10,357
- Likes
- 2,620
- Points
- 1,730
Experts are confident that such attacks will be used by intruders for a long time due to the greater demand for neural networks from OpenAI.
Google recently removed the Chrome online store extension, which was disguised as the popular ChatGPT neural network. Reportedly, the extension was used by intruders to collect session cookies on the social network Facebook and subsequently capture user accounts. Starting March 14, 2023 and up to the moment of removal, the Trojan expansion was established more than 9 thousand times.
According to a researcher at Guardio Labs, this malware was distributed through malicious advertisements in the Google search engine, which sent unsuspecting users to a page with fake expansion.
To look away, fake expansion performed the promised functions, but also imperceptibly stole the victims' cookies related to Facebook and transferred them to a remote server of intruders in encrypted form. Then the hackers seized control of the Facebook account in order to change the account data ( password, name and avatar ) to use the profile to spread extremist propaganda.
This is not the first fake extension in the Chrome online store to exploit the popularity of ChatGPT. Prior to this, cybercriminals used fake advertising on social networks to spread malware. The results of the study once again prove that attackers are able to quickly adapt their malicious campaigns to reach as large an audience as possible.
__________________
Google recently removed the Chrome online store extension, which was disguised as the popular ChatGPT neural network. Reportedly, the extension was used by intruders to collect session cookies on the social network Facebook and subsequently capture user accounts. Starting March 14, 2023 and up to the moment of removal, the Trojan expansion was established more than 9 thousand times.
According to a researcher at Guardio Labs, this malware was distributed through malicious advertisements in the Google search engine, which sent unsuspecting users to a page with fake expansion.
To look away, fake expansion performed the promised functions, but also imperceptibly stole the victims' cookies related to Facebook and transferred them to a remote server of intruders in encrypted form. Then the hackers seized control of the Facebook account in order to change the account data ( password, name and avatar ) to use the profile to spread extremist propaganda.
| Guardian Labs Disclosed Attack Scheme |
__________________