Phishing campaign targets ChatGPT users

2023-05-25 11:02

A clever phishing campaign aimed at stealing users' business email account credentials by impersonating OpenAI, the company behind the ChatGPT chatbot, has been spotted by Inky researchers.

The initial phase of the attack involves the victim receiving an email that appears legitimate, purportedly sent by OpenAI. The email requests the recipient to verify their email address in order to continue using their ChatGPT account setup.

"As an extra benefit to the phishers, when they used replace(), the phishing site was not saved in the browser's session history. So, the recipient would not be able to use the back button to navigate back to the phishing site."

The link pointing to the phishing page is crafted so that it automatically creates a convincing phishing page based on the domain name in the victim's email address.

The attackers are also using the InterPlanetary File System - a distributed file storage protocol that enables computers to store and share files within a vast peer-to-peer network - to host the phishing page, to make it more resilient to takedown.

"IPFS peer-to-peer model is distributed and hosted amongst multiple nodes in the network. These attacks are resilient to takedowns because the phishing content exists on multiple nodes at the same time so phishing content is still active even if one node is targeted," they explained.

News URL

https://www.helpnetsecurity.com/2023/05/25/chatgpt-phishing/

#chatgpt #phishing