As expected, users have been exploiting ChatGPT to have it spit out instructions that are against the terms of service.
But on top of that, scammers have been using ChatGPT as well.
Many phishing scammers have been using ChatGPT’s name in their domains, and email addresses.
There have been websites set up that are exact replicas of the actual ChatGPT website, which will be linked to in these phishing emails.
The emails have subject lines like:
“ChatGPT: New AI bot has everyone going crazy about it”
“New ChatGPT chatbot is making everyone crazy now – but soon it will be as mundane a tool as Google”
What to keep an eye out for
Normally these emails have fake ChatGPT graphics, this is to make them seem more legitimate.
After clicking the link to the website, it will promise financial opportunities to lure users in.
Certain sites have a fake chatbot that will introduce itself and its role in analysing financial markets.
The chatbot asks a few questions on finance like what the user’s current income is, and then prompts that person to input their email address.
More questions will be asked and as it tries to lure the user in even more, by explaining how much money they can make, then asks for the user to create a WhatsApp account for the earnings.
Instead of having the bot try to take all your personal information, it would have a real person, posing as a representative, call you.
This ‘representative’s’ job is to encourage you to make money by investing in international stocks, cryptocurrencies, and oil.
Of course, like any other scam, it eventually asks you to pay a certain amount of money.
Increase in cases
Researchers have found hundreds of domains with “ChatGPT” in them, have been registered recently.
Not all of these are being used for scamming, however, a lot of them are and have been since nearly the beginning of ChatGPT’s increase in popularity.
Other websites, such as “chat-gptp-pc.online” tried to convince users that ChatGPT was a downloadable app for Windows.
This download was found to have injected a RedLine info-stealing malware.
This malware would steal information from the user’s applications, like their web browsers, for example.
If the user was to have Microsoft Edge, it would take all the passwords or bank card details.
The malware could take this information and send it right back to the hacker.
The hackers are also targeting mobile users, with Google Play Store seeing a rise in fake ChatGPT apps.
These do the same as many of the websites, in hopes of someone falling for their fake chatbots and sending them money and personal information.
How to stay safe
It is important to remember that ChatGPT won’t contact you randomly to offer you money or ask for your personal information.
ChatGPT will never ask for any personal information.
The correct link to access the real ChatGPT is https://chat.openai.com
If you do receive one of these emails, don’t open any attachments or click any links within the content.
Instead, you can report the sender, or raise the issue with your IT department.
Use up-to-date antivirus software to combat any potential threat from these scammers.
If you need help keeping your business safe from phishing scams, contact us and see how we can help you.
Itek provides IT solutions for your entire IT infrastructure. Your business can experience a cost-effective service at a predictable fixed rate, removing the burden from you and your team and freeing you to focus on your goals.