Attackers distribute malware posing as ChatGPT to compromise Facebook, Instagram, and WhatsApp accounts, according to Meta.
As the popularity of generative AI chatbots increases, hackers are utilizing ChatGPT-themed bait to disseminate malware through social media platforms, as per a report released by Meta, Facebook’s parent company. The report reveals that malware posing as ChatGPT has been on the rise since March 2023, with attackers distributing DuckTail malware using AI-themed lures to compromise businesses with access to Facebook ad accounts.
Rising Trend of ChatGPT-themed Malware
The use of ChatGPT-themed malware is becoming increasingly common as more people engage with chatbots. Hackers have discovered that ChatGPT-themed lures are a highly effective way of delivering malicious software to users’ devices. Meta’s report reveals that its security teams have uncovered 10 malware families using ChatGPT and similar themes to deliver malicious software to users’ devices.
Attackers targeting Facebook, Instagram, and WhatsApp
Malware masquerading as ChatGPT is being used by hackers to target Facebook, Instagram, and WhatsApp. An example involved the development of malicious browser extensions that were accessible via official web stores and purported to offer ChatGPT-based tools. The perpetrators used social media and sponsored search results to entice people into downloading the malware. The DuckTail malware, active since 2021, targets Facebook users and steals browser cookies, hijacking logged-in Facebook sessions to pilfer information from the victim’s Facebook account. Additionally, the malware allows the attacker to seize control of any Facebook Business account the victim has authorization to access.
Vietnamese Threat Actors
Meta attributed the distribution of DuckTail malware to threat actors in Vietnam and issued cease-and-desist letters to the individuals behind the operation and notified law enforcement. In January, Meta discovered a new malware called NodeStealer, which targets Windows-based browsers with the aim of stealing cookies and saved login details to compromise Facebook, Gmail, and Microsoft Outlook accounts. Meta has proactively taken measures against the malware and has lodged takedown requests with domain registrars and hosting providers.
New Features to Fend Off Malware Attacks
Meta has introduced new features to assist business users in safeguarding themselves against malware attacks. These features encompass a support tool that provides a detailed guide to identifying and eradicating malware, as well as fresh controls for business accounts that help to manage, audit and limit who can become an account administrator. In addition, Meta revealed its plans to introduce Facebook at Work accounts later this year, which will enable business users to log in and manage Business Manager without necessitating a personal account. This will aid in the prevention of attacks that originate from a compromised personal account.
Conclusion
As the use of chatbots continues to grow, the threat of ChatGPT-themed malware is likely to increase. Hackers are using AI-themed lures to compromise social media platforms and steal personal data. It is essential to remain vigilant and take proactive steps to protect against these attacks. Meta’s new features to fend off malware attacks are a step in the right direction, but individuals and businesses must also take their own steps to protect their data.