A fake Chrome extension masquerading as ChatGPT, a popular language model created by Open AI, is stealing Facebook accounts, according to cybersecurity researchers from Guardio.
The fraudulent extention, which was available for download on the Chrome Web Store, had already amassed over 2,000 downloads before being taken down by Google. The malware behind the extension was designed to steal Facebook login credentials and user data, allowing cybercriminals to gain access to users' personal information.
The phony extension was able to bypass Google's security measures by copying the branding and design of the genuine Chat GPT extension. This made it difficult for users to identify the fake extension and distinguish it from the real one.
It was also designed to collect browsing data and history, allowing cybercriminals to track consumers' online activities and target them with personalized ads or hijacking attacks. The extension was able to do this by embedding vicious code within the extension itself.
According to the investigators, the extension was able to gain access to users' Facebook accounts by using a phishing interface that looked identical to the Facebook login interface. Once the user documented their login data, the phishing page would then transmit the information back to the cybercriminals, allowing them to log in to the consumers' Facebook accounts.
In addition to hijacking login details, it was also able to gain access to consumers' Facebook messages, photos, and personal information. This allowed cybercriminals to gain a comprehensive understanding of a user's online presence and use this information for malicious purposes.
Cybersecurity experts have warned users to be vigilant when downloading Chrome extensions and to only download extensions from reputable sources. They have also advised users to regularly change their passwords and enable two-factor authentication to add an extra layer of security to their accounts.
In response to the incident, Google has taken steps to prevent similar fraudulent extensions from being published on the Chrome Store. The company has also urged consumers to report any suspicious extensions that they come across to its security team.
The incident highlights the want for consumers to remain vigilant and take proactive measures to protect their online security. With cybercriminals becoming increasingly sophisticated in their tactics, users must stay informed and take steps to safeguard their personal information and online identity.
Read next: 99% of Cybersecurity Pros Are Worried About Email Security
The fraudulent extention, which was available for download on the Chrome Web Store, had already amassed over 2,000 downloads before being taken down by Google. The malware behind the extension was designed to steal Facebook login credentials and user data, allowing cybercriminals to gain access to users' personal information.
The phony extension was able to bypass Google's security measures by copying the branding and design of the genuine Chat GPT extension. This made it difficult for users to identify the fake extension and distinguish it from the real one.
It was also designed to collect browsing data and history, allowing cybercriminals to track consumers' online activities and target them with personalized ads or hijacking attacks. The extension was able to do this by embedding vicious code within the extension itself.
According to the investigators, the extension was able to gain access to users' Facebook accounts by using a phishing interface that looked identical to the Facebook login interface. Once the user documented their login data, the phishing page would then transmit the information back to the cybercriminals, allowing them to log in to the consumers' Facebook accounts.
In addition to hijacking login details, it was also able to gain access to consumers' Facebook messages, photos, and personal information. This allowed cybercriminals to gain a comprehensive understanding of a user's online presence and use this information for malicious purposes.
Cybersecurity experts have warned users to be vigilant when downloading Chrome extensions and to only download extensions from reputable sources. They have also advised users to regularly change their passwords and enable two-factor authentication to add an extra layer of security to their accounts.
In response to the incident, Google has taken steps to prevent similar fraudulent extensions from being published on the Chrome Store. The company has also urged consumers to report any suspicious extensions that they come across to its security team.
The incident highlights the want for consumers to remain vigilant and take proactive measures to protect their online security. With cybercriminals becoming increasingly sophisticated in their tactics, users must stay informed and take steps to safeguard their personal information and online identity.
Read next: 99% of Cybersecurity Pros Are Worried About Email Security
