Fake GPT Chrome extension steals Facebook session cookies, breaks into accounts • Graham Cluley

By
Ztec 100
-
0
986
Fake GPT Chrome extension steals Facebook session cookies, breaks into accounts • Graham Cluley


Fake GPT Chrome extension steals Facebook session cookies, breaks into accounts

The world has gone ChatGPT bonkers.

Just about everyone seems to be speaking about it, and if you happen to’re not speaking about it then that’s since you’re too busy getting ChatGPT to finish your homework, or compose the proper e-mail to your boss explaining why you deserve a payrise.

There’s a hazard although. Because of this hubbub concerning the extraordinary AI chatbot is inevitably going to pique the curiosity of this who haven’t but had an opportunity to strive it out. And these people might want an easy-peasy strategy to dip their toe into the dystopian manmade intelligence hellhole that seems to be proper across the nook.

EmailSign as much as our publication
Security information, recommendation, and ideas.

So, if you happen to don’t know learn how to entry ChatGPT, what do you do?

Well, you may use your trusty search engine to learn the way to entry ChatGPT.

And that’s the primary threat. Because cybercriminals have poisoned Google search outcomes with malicious webpages and sponsored advertisements that time to faux browser extensions that declare to present you prompt, user-friendly entry to ChatGPT however are literally a canopy for doing one thing way more malicious as an alternative.

As safety researchers at Guardio Labs describe, scammers managed to plant a rip-off browser extension into the official Chrome retailer that claimed to be for “Chat GPT 4.”

Chat gpt for google extension

And the malicious extension steals your pc’s Facebook-related cookies and silently squirrels them away to the hacker, who can then seize management of your online business’s Facebook web page.

Once they’ve gained entry to your organization’s Facebook account, passwords might be modified (locking out the real proprietor), and the official Facebook web page of your online business hijacked to unfold disinformation, scams, spam… successfully regardless of the hacker desires.

Google says it has now eliminated the extension from its Chrome Web Store, in addition to the malicious advertisements in its search outcomes. However, it wouldn’t be a shock if related makes an attempt have been made to take advantage of the curiosity in ChatGPT sooner fairly than later.

Don’t overlook – browser extensions and add-ons have an infinite quantity of energy. If you put in a rogue extension, all the things you do in your browser may very well be compromised.

Found this text attention-grabbing? Follow Graham Cluley on Twitter or Mastodon to learn extra of the unique content material we publish.

Graham Cluley is a veteran of the anti-virus business having labored for a variety of safety corporations because the early Nineties when he wrote the primary ever model of Dr Solomon’s Anti-Virus Toolkit for Windows. Now an impartial safety analyst, he often makes media appearances and is an international public speaker on the subject of pc safety, hackers, and on-line privateness.
Follow him on Twitter at @gcluley, on Mastodon at @[email protected], or drop him an e-mail.

LEAVE A REPLY

Please enter your comment!
Please enter your name here