Security News > 2023 > February > Hackers use fake ChatGPT apps to push Windows, Android malware

Threat actors are exploiting the popularity of OpenAI's ChatGPT chatbot to distribute malware for Windows and Android, or direct unsuspecting vitims to phishing pages.
Security researcher Dominic Alvieri was among the first to notice one such example using the domain "Chat-gpt-pc.online" to infect visitors with the Redline info-stealing malware under the guise of a download for a ChatGPT Windows desktop client.
Alvieri also spotted fake ChatGPT apps being promoted on Google Play and third-party Android app stores, to push dubious software onto people's devices.
Researchers at Cyble have published a relevant report today where they present additional findings regarding the malware distribution campaign discovered by Alvieri, as well as other malicious operations exploiting ChatGPT's popularity.
ChatGPT is exclusively an online-based tool available only at "Chat.openai.com" and does not offer any mobile or desktop apps for any operating systems at the moment.
Any other apps or sites claiming to be ChatGPT are fakes attempting to scam or infect with malware and should be considered at least suspicious and users should avoid them.
News URL
Related news
- APT36 Spoofs India Post Website to Infect Windows and Android Users with Malware (source)
- North Korea’s ScarCruft Deploys KoSpy Malware, Spying on Android Users via Fake Utility Apps (source)
- Steam pulls game demo infecting Windows with info-stealing malware (source)
- New Android malware uses Microsoft’s .NET MAUI to evade detection (source)
- EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware (source)
- Update VMware Tools for Windows Now: High-Severity Flaw Lets Hackers Bypass Authentication (source)
- Chinese FamousSparrow hackers deploy upgraded malware in attacks (source)
- Android Malware Exploits a Microsoft-Related Security Blind Spot to Avoid Detection (source)
- New Crocodilus malware steals Android users’ crypto wallet keys (source)
- Counterfeit Android devices found preloaded With Triada malware (source)